CVE-2008-0387

Integer overflow in Firebird SQL 1.0.3 and earlier, 1.5.x before 1.5.6, 2.0.x before 2.0.4, and 2.1.x before 2.1.0 RC1 might allow remote attackers to execute arbitrary code via crafted (1) op_receive, (2) op_start, (3) op_start_and_receive, (4) op_send, (5) op_start_and_send, and (6) op_start_send_and_receive XDR requests, which triggers memory corruption.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:N/I:N/A:C
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
firebirdsqlfirebird
𝑥
≤ 1.0.3
firebirdsqlfirebird
1.5 ≤
𝑥
< 1.5.6
firebirdsqlfirebird
2.0.0 ≤
𝑥
< 2.0.4
firebirdsqlfirebird
2.1.0
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firebird2
karmic
dne
jaunty
dne
intrepid
dne
hardy
dne
gutsy
dne
feisty
ignored
edgy
ignored
dapper
ignored
firebird2.0
karmic
Fixed 2.0.3.12981.ds1-4
released
jaunty
Fixed 2.0.3.12981.ds1-4
released
intrepid
Fixed 2.0.3.12981.ds1-4
released
hardy
Fixed 2.0.3.12981.ds1-4
released
gutsy
ignored
feisty
dne
edgy
dne
dapper
dne
Common Weakness Enumeration