Required CVE Record Information
Description
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement.
References 4 Total
- lists.debian.org: [debian-lts-announce] 20180511 [SECURITY] [DLA 1374-1] firebird2.5 security update mailing-list
- https://www.tenable.com/security/research/tra-2017-36
- lists.debian.org: [debian-lts-announce] 20200229 [SECURITY] [DLA 2129-1] firebird2.5 security update mailing-list
- lists.debian.org: [debian-lts-announce] 20211120 [SECURITY] [DLA 2824-1] firebird3.0 security update mailing-list
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- lists.debian.org: [debian-lts-announce] 20180511 [SECURITY] [DLA 1374-1] firebird2.5 security update mailing-listx_transferred
- https://www.tenable.com/security/research/tra-2017-36 x_transferred
- lists.debian.org: [debian-lts-announce] 20200229 [SECURITY] [DLA 2129-1] firebird2.5 security update mailing-listx_transferred
- lists.debian.org: [debian-lts-announce] 20211120 [SECURITY] [DLA 2824-1] firebird3.0 security update mailing-listx_transferred