15 matches found
EUVD-2009-3990
Malware in sbrugna...
SUSE CVE-2009-4019
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...
MySQL <= 6.0.9 GeomFromWKB() Function First Argument Geometry Value Handling DoS
No description provided by source. source: http://www.securityfocus.com/bid/37297/info MySQL is prone to multiple remote denial-of-service vulnerabilities because it fails to handle certain SQL expressions. An attacker can exploit these issues to crash the application, denying access to legitimat...
SuSE 11 Security Update : MySQL (SAT Patch Number 2317)
Updated MySQL packages fix the following bugs : - upstream 47320 - checking server certificates. CVE-2009-4028 - upstream 48291 - error handling in subqueries. CVE-2009-4019 - upstream 47780 - preserving nullvalue flag in GeomFromWKB. CVE-2009-4019 - upstream 39277 - symlink behaviour fixed...
mysql: DoS (crash) when comparing GIS items from subquery and when handling subqueires in WHERE and assigning a SELECT result to a @variable
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...
Code injection
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...
CVE-2009-4019
CVE-2009-4019 affects MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41. The vulnerability arises from two issues during statement execution: (1) improper error handling in certain SELECT statements with subqueries, and (2) failure to preserve certain null_value flags when using the GeomFromWKB f...
CVE-2009-4019
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...
MySQL 5.0 < 5.0.88 Multiple Vulnerabilities
The version of MySQL 5.0 installed on the remote host is earlier than 5.0.88. It is, therefore, potentially affected by the following vulnerabilities : - MySQL clients linked against OpenSSL are vulnerable to man-in-the-middle attacks. Bug 47320 - The GeomFromWKB function can be manipulated to...
MySQL 5.1 < 5.1.41 Multiple Vulnerabilities
The version of MySQL 5.1 installed on the remote host is earlier than 5.1.41 and is, therefore, potentially affected by the following vulnerabilities : - An incomplete fix was provided in 5.1.24 for CVE-2008-2079, a symlink-related privilege escalation issue. Bug 39277 - MySQL clients linked...
Oracle MySQL < 5.1.41 Multiple Vulnerabilities
Binary data 5240.prm...
MySQL < 5.1.41 Multiple Vulnerabilities
Binary data 801137.prm...
MySQL拒绝服务和客户端证书校验漏洞
MySQL是一款流行的数据库服务程序。 MySQL存在多个安全漏洞,恶意攻击者可以进行拒绝服务和伪造攻击。 -链接OpenSSL库的MySQL客户端包含的"vioverifycallback"函数存在错误,MySQL服务器如果使用深度为零的证书,攻击者可以进行中间人攻击。 -对在WHERE子句中包含子查询的"SELECT"缺少错误处理和指派一个SELECT结果给用户变量,这个结果可导致服务程序崩溃。 -当处理Geometry值作为第一个参数时"GeomFromWKB"函数不正确保留参数的空值标记,可导致服务程序崩溃。 MySQL 5.x MySQL...
MySQL 6.0.9 - GeomFromWKB() Function First Argument Geometry Value Handling Denial of Service
MySQL 6.0.9 - GeomFromWKB Function First Argument Geometry Value Handling Denial of Service source: https://www.securityfocus.com/bid/37297/info MySQL is prone to multiple remote denial-of-service vulnerabilities because it fails to handle certain SQL expressions. An attacker can exploit these...
MySQL 6.0.9 - 'GeomFromWKB()' Function First Argument Geometry Value Handling Denial of Service
source: https://www.securityfocus.com/bid/37297/info MySQL is prone to multiple remote denial-of-service vulnerabilities because it fails to handle certain SQL expressions. An attacker can exploit these issues to crash the application, denying access to legitimate users. Versions prior to MySQL...