Intrusion Prevention

Firebird.SQL.Op_connect_request.DoS

Description

This indicates an attack attempt against a denial-of-service vulnerability in Firebird SQL.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted op_connect_request request. It allows a remote attacker to create a denial-of-service condition on the Firebird SQL service.

Affected Products

Firebird SQL v1.5.5
Firebird SQL v2.0.1
Firebird SQL v2.0.5
Firebird SQL v2.1.1
Firebird SQL v2.1.2
Firebird SQL v2.1.3 RC1
Firebird SQL v2.5.0 Beta 1

Impact

Denial of service

Recommended Actions

Upgrade to the latest versions:
http://www.mandriva.com/en/download/

CVE References

CVE-2009-2620