CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
96.3%
Added: 02/11/2008
CVE: CVE-2008-0467
BID: 27467
OSVDB: 40924
Firebird is a freely available relational database which is available for multiple platforms.
A buffer overflow vulnerability in Firebird allows remote, unauthenticated attackers to execute arbitrary commands by sending a long, specially crafted username.
Upgrade to Firebird 2.1 RC1 or higher.
<http://secunia.com/advisories/28596>
Exploit works on Firebird 2.0.3.
Windows 2000
Windows Server 2003