CVE-2016-1249

2017-02-17T02:59:00
ID CVE-2016-1249
Type cve
Reporter cve@mitre.org
Modified 2017-07-01T01:29:00

Description

The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned number of placeholders in WHERE condition and output fields in SELECT expression.