Launchpad CVE tracker

CVE 2007-3181

Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large p_cnct_count value in a p_cnct structure in a connect (0x01) request to port 3050/tcp, related to "an InterBase version of gds32.dll."

Related bugs and status

CVE-2007-3181 (Candidate) is related to these bugs:

Bug #210141: [firebird] [DSA-1529-1] Debian recommends upgrade to firebird2, support for firebird1.5 discontinued

Summary				In	Importance	Status
	210141	[firebird] [DSA-1529-1] Debian recommends upgrade to firebird2, support for firebird1.5 discontinued		firebird1.5 (Ubuntu)	Undecided	Won't Fix
	210141	[firebird] [DSA-1529-1] Debian recommends upgrade to firebird2, support for firebird1.5 discontinued		firebird2 (Ubuntu)	Undecided	Won't Fix

See the

CVE page on Mitre.org for more details.

References

MISC: http://dvlabs.tippingp...
CONFIRM: http://www.firebirdsql...
BID: 24436
SECUNIA: 25601
GENTOO: GLSA-200707-01
SECUNIA: 25872
DEBIAN: DSA-1529
SECUNIA: 29501
VUPEN: ADV-2007-2149
OSVDB: 37231
XF: firebird-fbserver-bo(3...

Launchpad.net

CVE 2007-3181

Related bugs and status

Related bugs

References