TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firebird | Firebirdsql | 2.5.0 | 2.5.0 |
Firebird | Firebirdsql | 2.5.1 | 2.5.1 |