CVE Vulnerabilities

CVE-2007-3527

Published: Jul 03, 2007 | Modified: Oct 31, 2012
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:L/Au:S/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certain database operations with multi-byte character sets that trigger an attempt to use the value 65536 for a 16-bit integer, which is treated as 0 and causes an infinite loop on zero-length data.

Affected Software

Name Vendor Start Version End Version
Firebird Firebirdsql 2.0.0 (including) 2.0.0 (including)
Firebird2.0 Ubuntu devel *

References