Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-4669

The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log (firebird.log), aka CORE-1148.

Related bugs and status

CVE-2007-4669 (Candidate) is related to these bugs:

Bug #139007: [UVFe] Import firebird2.0 2.0.3.12981.ds1-1 from Debian unstable (main)

Summary				In	Importance	Status
	139007	[UVFe] Import firebird2.0 2.0.3.12981.ds1-1 from Debian unstable (main)		firebird2.0 (Ubuntu)	Undecided	Fix Released

Bug #210141: [firebird] [DSA-1529-1] Debian recommends upgrade to firebird2, support for firebird1.5 discontinued

Summary				In	Importance	Status
	210141	[firebird] [DSA-1529-1] Debian recommends upgrade to firebird2, support for firebird1.5 discontinued		firebird1.5 (Ubuntu)	Undecided	Won't Fix
	210141	[firebird] [DSA-1529-1] Debian recommends upgrade to firebird2, support for firebird1.5 discontinued		firebird2 (Ubuntu)	Undecided	Won't Fix

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://sourceforge.net...
CONFIRM: http://tracker.firebir...
CONFIRM: http://www.firebirdsql...
BID: 25497
DEBIAN: DSA-1529
SECUNIA: 29501
CONFIRM: http://www.firebirdsql...