NVD

Id
24784  
Name
CVE-2015-2788  
Description
Multiple stack-based buffer overflows in the ib_fill_isqlda function in dbdimp.c in DBD-Firebird before 1.19 allow remote attackers to have unspecified impact via unknown vectors that trigger an error condition, related to binding octets to columns.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2015-04-14  
Modified Date
2016-12-02  
Seq
2015-2788  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
130803 24784 CVE-2015-2788 DSA-3219  View
130804 24784 CVE-2015-2788 [oss-security] 20150330 Re: CVE Request: DBD-Firebird: Buffer Overflow in dbdimp.c  View
130805 24784 CVE-2015-2788 [oss-security] 20150330 CVE Request: DBD-Firebird: Buffer Overflow in dbdimp.c  View
130806 24784 CVE-2015-2788 73409  View
130807 24784 CVE-2015-2788 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780925  View
130808 24784 CVE-2015-2788 https://metacpan.org/source/DAM/DBD-Firebird-1.19/Changes  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
6964 JVNDB-2015-002284 libdbd-firebird-perl の dbdimp.c 内の ib_fill_isqlda 関数におけるスタックベースのバッファオーバーフローの脆弱性 libdbd-firebird-perl (DBD-Firebird) の dbdimp.c 内の ib_fill_isqlda 関数には、列へのオクテットのバインディング処理に不備があるため、スタックベースのバッファオーバーフローの脆弱性が存在します。 CVE-2015-2788 80013 CVE-2015-2788 24784 10 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-002284.html 2015-03-22 2015-04-16 View