Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-6304
HistoryDec 10, 2007 - 9:46 p.m.

CVE-2007-6304

2007-12-1021:46:00
[email protected]
web.nvd.nist.gov
8

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.017

Percentile

88.0%

JSON

The federated engine in MySQL 5.0.x before 5.0.51a, 5.1.x before 5.1.23, and 6.0.x before 6.0.4, when performing a certain SHOW TABLE STATUS query, allows remote MySQL servers to cause a denial of service (federated handler crash and daemon crash) via a response that lacks the minimum required number of columns.

Affected configurations

Nvd
Node
mysqlmysqlMatch5.0.0
OR
mysqlmysqlMatch5.0.1
OR
mysqlmysqlMatch5.0.2
OR
mysqlmysqlMatch5.0.3
OR
mysqlmysqlMatch5.0.4
OR
mysqlmysqlMatch5.0.5
OR
mysqlmysqlMatch5.0.5.0.21
OR
mysqlmysqlMatch5.0.10
OR
mysqlmysqlMatch5.0.15
OR
mysqlmysqlMatch5.0.16
OR
mysqlmysqlMatch5.0.17
OR
mysqlmysqlMatch5.0.20
OR
mysqlmysqlMatch5.0.22.1.0.1
OR
mysqlmysqlMatch5.0.24
OR
oraclemysqlMatch5.0.0alpha
OR
oraclemysqlMatch5.0.3beta
OR
oraclemysqlMatch5.0.6
OR
oraclemysqlMatch5.0.7
OR
oraclemysqlMatch5.0.8
OR
oraclemysqlMatch5.0.9
OR
oraclemysqlMatch5.0.11
OR
oraclemysqlMatch5.0.12
OR
oraclemysqlMatch5.0.13
OR
oraclemysqlMatch5.0.14
OR
oraclemysqlMatch5.0.18
OR
oraclemysqlMatch5.0.19
OR
oraclemysqlMatch5.0.21
OR
oraclemysqlMatch5.0.22
OR
oraclemysqlMatch5.0.27
OR
oraclemysqlMatch5.0.33
OR
oraclemysqlMatch5.0.37
OR
oraclemysqlMatch5.0.41
OR
oraclemysqlMatch5.1.1
OR
oraclemysqlMatch5.1.2
OR
oraclemysqlMatch5.1.10
OR
oraclemysqlMatch5.1.11
OR
oraclemysqlMatch5.1.12
OR
oraclemysqlMatch5.1.13
OR
oraclemysqlMatch5.1.14
OR
oraclemysqlMatch5.1.15
OR
oraclemysqlMatch5.1.16
OR
oraclemysqlMatch5.1.17
OR
oraclemysqlMatch6.0.0
OR
oraclemysqlMatch6.0.1
OR
oraclemysqlMatch6.0.2
OR
oraclemysqlMatch6.0.3
VendorProductVersionCPE
mysqlmysql5.0.0cpe:2.3:a:mysql:mysql:5.0.0:*:*:*:*:*:*:*
mysqlmysql5.0.1cpe:2.3:a:mysql:mysql:5.0.1:*:*:*:*:*:*:*
mysqlmysql5.0.2cpe:2.3:a:mysql:mysql:5.0.2:*:*:*:*:*:*:*
mysqlmysql5.0.3cpe:2.3:a:mysql:mysql:5.0.3:*:*:*:*:*:*:*
mysqlmysql5.0.4cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*
mysqlmysql5.0.5cpe:2.3:a:mysql:mysql:5.0.5:*:*:*:*:*:*:*
mysqlmysql5.0.5.0.21cpe:2.3:a:mysql:mysql:5.0.5.0.21:*:*:*:*:*:*:*
mysqlmysql5.0.10cpe:2.3:a:mysql:mysql:5.0.10:*:*:*:*:*:*:*
mysqlmysql5.0.15cpe:2.3:a:mysql:mysql:5.0.15:*:*:*:*:*:*:*
mysqlmysql5.0.16cpe:2.3:a:mysql:mysql:5.0.16:*:*:*:*:*:*:*
Rows per page:
1-10 of 461

References

Related

prion 2
cvelist 1
ubuntucve 1
securityvulns 1
cve 2
openvas 12
seebug 1
nvd 1
nessus 11
debian 1
gentoo 1
osv 2
altlinux 1
ubuntu 1
prion
prion
Code injection
2007-12-10 21:46:00
Design/Logic Flaw
2008-02-06 21:00:00
cvelist
cvelist
CVE-2007-6304
2007-12-10 21:00:00
ubuntucve
ubuntucve
CVE-2007-6304
2007-12-10 00:00:00
securityvulns
securityvulns
MySQL SHOW TABLE STATUS DoS
2007-12-21 00:00:00
cve
cve
CVE-2007-6304
2007-12-10 21:46:00
CVE-2008-0627
2008-02-06 21:00:00
openvas
openvas
Mandriva Update for mysql MDVSA-2008:017 (mysql)
2009-04-09 00:00:00
Mandriva Update for mysql MDVSA-2008:028 (mysql)
2009-04-09 00:00:00
Mandriva Update for mysql MDVSA-2008:028 (mysql)
2009-04-09 00:00:00
seebug
seebug
MySQL Serverζƒι™ζε‡εŠζ‹’η»ζœεŠ‘ζΌζ΄ž
2007-12-14 00:00:00
nvd
nvd
CVE-2008-0627
2008-02-06 21:00:00
nessus
nessus
MySQL < 5.0.51a / 5.1.23 / 6.0.4 Multiple Vulnerabilities
2012-01-16 00:00:00
Mandriva Linux Security Advisory : mysql (MDVSA-2008:017)
2009-04-23 00:00:00
GLSA-200804-04 : MySQL: Multiple vulnerabilities
2008-04-11 00:00:00
debian
debian
[SECURITY] [DSA 1451-1] New mysql-dfsg-5.0 packages fix several vulnerabilities
2008-01-06 18:04:18
gentoo
gentoo
MySQL: Multiple vulnerabilities
2008-04-06 00:00:00
osv
osv
mysql-dfsg-5.0 several vulnerabilities
2008-01-06 00:00:00
libmariadbd-devel-10.6.4-2.1 on GA media
2024-06-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package MySQL version 5.0.51-alt1
2008-01-01 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2007-12-21 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.017

Percentile

88.0%

JSON
Related for NVD:CVE-2007-6304
prion2cvelist1ubuntucve1securityvulns1cve2openvas12seebug1nvd1nessus11debian1gentoo1osv2altlinux1ubuntu1