Firebird Database < 2.1.1.17910 Multiple Vulnerabilities

Medium Nessus Network Monitor Plugin ID 4584

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host seems to be running a Firebird database server.

This version of Firebird is vulnerable to a number of flaws. While the details of the flaws are currently unknown, the vendor has addressed the issues. It is believed that an attacker exploiting these flaws would be able to gain access to confidential data and/or cause the database to crash.

Solution

Upgrade to version 2.1.1.17910 or higher.

See Also

http://sourceforge.net/project/shownotes.php?group_id=9028&amp;release_id=613435

Plugin Details

Severity: Medium

ID: 4584

Family: Database

Published: 2004/08/18

Modified: 2016/02/05

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5.5

Temporal Score: 4.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 5.3

Temporal Score: 4.9

Vector: CVSS3#AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Reference Information

BID: 30229