VDB
CVE-2007-3181
CVE-2007-3181
PUBLISHED
CVSS 10 CRITICAL
Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large p_cnct_count value in a p_cnct structure in a connect (0x01) request to port 3050/tcp, related to "an InterBase version of gds32.dll."
EPSS 29.68% · 96.7th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
29.68%
96.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| bakbone | netvault | * |
| firebirdsql | firebird | 0 |
Timeline
- Jun 12, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- 37231 vdb
- 24436 vdb
- http://www.firebirdsql.org/rlsnotes/Firebird-2.0.1-ReleaseNotes.pdf url
- 25601 third-party-advisory
- firebird-fbserver-bo(34833) vdb
- http://dvlabs.tippingpoint.com/advisory/TPTI-07-11 url
- GLSA-200707-01 vendor-advisory
- ADV-2007-2149 vdb
- 29501 third-party-advisory
- 25872 third-party-advisory
- DSA-1529 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2007-3181 advisory