Signature Detail

Short Name	DB:FIREBIRD-DOS
Severity	Medium
Recommended	No
Recommended Action	Drop
Category	DB
Keywords	Firebird SQL Connect Denial of Service
Release Date	2010/09/29
Update Number	1782
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DB: Firebird SQL Connect Denial of Service

This signature detects attempts to exploit a known vulnerability against Firebird SQL. A successful attack can result in a denial-of-service condition.

Extended Description

Firebird is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied input. An attacker can exploit this issue to crash the application, denying access to legitimate users.

Affected Products

Firebird 1.5.5
Firebird 2.0.1
Firebird 2.0.5
Firebird 2.1.1
Firebird 2.1.2
Firebird 2.1.3 RC1
Firebird 2.5 Beta 1
Mandriva Enterprise Server 5
Mandriva Enterprise Server 5 X86 64
Pardus Linux 2008
Pardus Linux 2009
Red Hat Fedora 10
Red Hat Fedora 11

References

BugTraq: 35842
CVE: CVE-2009-2620

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

DB: Firebird SQL Connect Denial of Service

Extended Description

Affected Products

References