CVE-2012-5529

Name of the Vulnerable Software and Affected Versions Firebird versions 2.5.0 through 2.5.1

Description The issue is related to the TraceManager component in the Firebird database management system, which is associated with resource management errors. When trace is enabled, a remote authenticated user can cause a denial of service by preparing an empty dynamic SQL query, leading to a NULL pointer dereference and crash.

Recommendations For Firebird versions 2.5.0 and 2.5.1, consider disabling the trace feature as a temporary workaround to prevent exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.