Download
| Alert*
oval:org.secpod.oval:def:60395
The host is installed with Firebird 2.5.x before 2.5.7 or 3.x before 3.0.2 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to properly handle insufficient checks in the UDF subsystem. Successful exploitation could allow remote authenticated us ... oval:org.secpod.oval:def:54110 firebird2.5: A full-featured, open source SQL database derived from Borland InterBase 6.0 Several security issues were fixed in Firebird. oval:org.secpod.oval:def:704869 firebird2.5: A full-featured, open source SQL database derived from Borland InterBase 6.0 Several security issues were fixed in Firebird. oval:org.secpod.oval:def:61610 The host is installed with Firebird 2.5.x before 2.5.7 or 3.x before 3.0.2 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to properly handle insufficient checks in the UDF subsystem. Successful exploitation could allow remote authenticated us ... oval:org.secpod.oval:def:1901524 Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated users to execute code by using a "system" entrypoint from fbudf.so. oval:org.secpod.oval:def:112230 This package contains common files between firebird-classic, firebird-superclassic and firebird-superserver. You will need this if you want to use either one. oval:org.secpod.oval:def:602836 George Noseevich discovered that firebird2.5, a relational database system, did not properly check User-Defined Functions , thus allowing remote authenticated users to execute arbitrary code on the firebird server. |