Firebird Remote Pre-Authentication Database Name Buffer Overrun Vulnerability

Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling database names.

A remote attacker may exploit this vulnerability, without requiring valid authentication credentials, to influence the execution flow of the affected Firebird database server. Ultimately, this may lead to the execution of attacker-supplied code in the context of the affected software.


 

Privacy Statement
Copyright 2010, SecurityFocus