PT-2026-33483 · Firebird+1 · Firebird+1
Highdyemanov
·
Published
2026-04-17
·
Updated
2026-05-15
·
CVE-2026-34232
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Firebird versions prior to 5.0.4
Firebird versions prior to 4.0.7
Firebird versions prior to 3.0.14
Description
The
xdr status vector() function fails to handle the isc arg cstring type during the decoding of an 'op response' packet. This allows an unauthenticated attacker to cause a server crash by sending a specially crafted 'op response' packet to the server.Recommendations
Update to version 5.0.4
Update to version 4.0.7
Update to version 3.0.14
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Firebird
Red Os