• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Firebird Multiple Denial of Service and Information Disclosure Vulnerabilities

Severity: MODERATE

Description:

Firebird is a relational database management system (RDBMS) available for multiple operating platforms.

Firebird is prone to multiple vulnerabilities:

1. A denial-of-service vulnerability occurs when processing specially crafted expressions.

2. A denial-of-service vulnerability occurs when processing an 'EXECUTE STATEMENT'.

3. A denial-of-service condition occurs when handling altered procedures.

4. An unspecified information-disclosure vulnerability can be exploited to view the server's installation directory.

5. An information-disclosure vulnerability occurs because the application creates databases with improper access rights. Unauthorized local users can exploit the issue to view database contents.

NOTE: To exploit these issues, attackers may require valid Firebird credentials for the vulnerable instance of the application. Although some of these issues are described as 'memory-corruption vulnerabilities', it has not been confirmed whether attackers can leverage them to execute code.

Attackers can exploit these issues to crash the application, corrupt memory, or obtain potentially sensitive information.

Firebird 2.0.4 and 2.1.0 are vulnerable; other versions may also be affected.

Affected Products:

• Firebird Firebird 1.0.3
• Firebird Firebird 1.5.4
• Firebird Firebird 2.0
• Firebird Firebird 2.0.1
• Firebird Firebird 2.0.2
• Firebird Firebird 2.0.3
• Firebird Firebird 2.0.4
• Firebird Firebird 2.1 Alpha 1
• Firebird Firebird 2.1 Beta 1
• Firebird Firebird 2.1 Beta 2
• Firebird Firebird 2.1.0
• Firebird Firebird 2.1.0 RC1
• FreeBSD FreeBSD 4.6.0
• FreeBSD FreeBSD 4.7.0
• FreeBSD FreeBSD 4.8.0

References:

• Firebird: CORE-1845 Some standard calls show server installation directory to regular user
• Firebird: CORE-1884 Random AVs using stored procedures with expressions as default values
• Firebird: CORE-1887 New created databases have wrong access rights
• Firebird: CORE-1919 Memory corruptions in EXECUTE STATEMENT may crash the server
• Firebird: CORE-1930 Possible AV in engine if procedure was altered to have no outputs and
• Firebird: Firebird 2.1.1-Release (Source) Changelog
• Firebird: Firebird Homepage

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.