CVE-2012-5529Firebird vulnerability

CWE-3996 documents4 sources
Severity
3.5LOWNVD
EPSS
1.0%
top 23.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Firebirdsql Firebird
Timeline
PublishedNov 20
Latest updateMay 17

Description

TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 6.8 | Impact: 2.9

Affected Packages1 packages

NVDfirebirdsql/firebird2.5.0, 2.5.1+1

🔴Vulnerability Details

2
GHSA
GHSA-69fh-mhqq-m6vc: TraceManager in Firebird 22022-05-17
CVEList
CVE-2012-5529: TraceManager in Firebird 22012-11-20

💬Community

3
Bugzilla
CVE-2012-5529 firebird: DoS (NULL pointer dereference) while preparing an empty query with trace enabled [epel-6]2012-11-14
Bugzilla
CVE-2012-5529 firebird: DoS (NULL pointer dereference) while preparing an empty query with trace enabled2012-11-14
Bugzilla
CVE-2012-5529 firebird: DoS (NULL pointer dereference) while preparing an empty query with trace enabled [fedora-all]2012-11-14
CVE-2012-5529 — Firebirdsql Firebird vulnerability | cvebase