3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:N/I:N/A:P
0.007 Low
EPSS
Percentile
80.4%
sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows
remote authenticated users to cause a denial of service (crash) via an
EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table, as originally
demonstrated using ORDER BY.
Author | Note |
---|---|
jdstrand | DoS, but escalated to medium for customer |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | mysql-dfsg-5.0 | < 5.0.22-0ubuntu6.06.8 | UNKNOWN |
ubuntu | 6.10 | noarch | mysql-dfsg-5.0 | < 5.0.24a-9ubuntu2.4 | UNKNOWN |