HomePentest-Tools.com Logo

Firebird SQL op_connect_request Denial Of Service Vulnerability (Windows) CVE-2009-2620

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Firebird is prone to a denial of service (DoS) vulnerability.

Risk description

The flaw is due to error in the rc/remote/server.cpp in fbserver.exe. It fails to sanitise the input sent via a malformed op_connect_request message that triggers an infinite loop or NULL pointer dereference. Successful exploitation will allow attackers to cause Denial of Service in the affected application.

Recommendation

Upgrade to version 1.5.6, 2.0.6, 2.1.3, or 2.5 Beta 2 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jul 29, 2009
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available