TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
firebirdsql firebird 2.5.0 |
||
firebirdsql firebird 2.5.1 |