Back to search
CVE-2017-11509
Published: Mar 28, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement.
| Vendor | Product | Versions |
|---|---|---|
Firebird Foundation | Firebird SQL Server | affected 2.5.7affected 3.0.2 |
References
[debian-lts-announce] 20180511 [SECURITY] [DLA 1374-1] firebird2.5 security update
mailing-list
x_refsource_MLIST
https://www.tenable.com/security/research/tra-2017-36
x_refsource_MISC
[debian-lts-announce] 20200229 [SECURITY] [DLA 2129-1] firebird2.5 security update
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20211120 [SECURITY] [DLA 2824-1] firebird3.0 security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now