CVE-2008-0467

NameCVE-2008-0467
DescriptionStack-based buffer overflow in Firebird before 2.0.4, and 2.1.x before 2.1.0 RC1, might allow remote attackers to execute arbitrary code via a long username.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1529-1
NVD severityhigh (attack range: remote)
Debian Bugs463596

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
firebird2source(unstable)(unfixed)high
firebird2.0source(unstable)2.0.3.12981.ds1-5medium463596

Notes

[etch] - firebird2 <no-dsa> (Fixed packages have been released through backports.org, see #1529)

Search for package or bug name: Reporting problems