MySQL Single Row Subselect Remote DoS

According to its banner, the version of MySQL on the remote host is older than 5.0.37. Such versions are vulnerable to a remote denial of service when processing certain single row subselect queries. A malicious user can crash the service via a specially crafted SQL query. C Tenable Network...

USN-440-1: MySQL vulnerability

Stefan Streichbier and B. Mueller of SEC Consult discovered that MySQL subselect queries using "ORDER BY" could be made to crash the MySQL server. An attacker with access to a MySQL instance could cause an intermitant denial of service...

MySQL subselect DoS

NULL pointer dereference if string function is applied to select with "order by" result...

SEC Consult SA-20070309-0 :: MySQL 5 Single Row Subselect Denial of Service

SEC-CONSULT Security Advisory 20070309-0 =========================================================================== title: MySQL 5 Single Row Subselect Denial of Service program: MySQL 5 vulnerable version: 5.0.37 impact: moderate homepage: http://www.mysql.com found: 2007-02-10 by: S.Streichbie...