Home > Vulnerability Database > CVE-2007-2606

Mend.io Vulnerability Database

CVE-2007-2606

Date: May 11, 2007

Multiple buffer overflows in Firebird 2.1 allow attackers to trigger memory corruption and possibly have other unspecified impact via certain input processed by (1) config\ConfigFile.cpp or (2) msgs\check_msgs.epp. NOTE: if ConfigFile.cpp reads a configuration file with restrictive permissions, then the ConfigFile.cpp vector may not cross privilege boundaries and perhaps should not be included in CVE.

Severity Score

7.5

Related Resources (10)

Url: http://www.securityfocus.com/bid/28478

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/34201

Url: http://osvdb.org/37308

Url: http://osvdb.org/37309

Url: http://www.securityfocus.com/archive/1/468070/100/0/threaded

Url: http://securityreason.com/securityalert/2708

Url: http://www.debian.org/security/2008/dsa-1529

Url: https://nvd.nist.gov/vuln/detail/CVE-2007-2606

Url: http://secunia.com/advisories/29501

Url: https://www.mend.io/vulnerability-database/CVE-2007-2606

Severity Score

7.5

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

CVSS v2

Base Score:	7.8
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2007-2606

Date: May 11, 2007

Severity Score

Related Resources (10)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?