Lucene search

Veracode Vulnerability DatabaseVERACODE:24409

HistoryApr 10, 2020 - 12:53 a.m.

Denial Of Service (DoS)

2020-04-1000:53:41

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

JSON

mysql is vulnerable to denial of service (DoS). The vulnerability exists as a flaw in the way MySQL processed SQL queries containing IN or CASE statements, when a NULL argument was provided as one of the arguments to the query, could allow a remote, authenticated attacker to crash mysqld.

CPENameOperatorVersion
mysqleq5.1.47__4.el6
mysqleq5.1.47__4.el6

CPE	Name	Operator	Version
	mysql	eq	5.1.47__4.el6
	mysql	eq	5.1.47__4.el6

References

bugs.mysql.com/bug.php?id=54477

dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html

dev.mysql.com/doc/refman/5.1/en/news-5-1-52.html

lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

secunia.com/advisories/42936

www.mandriva.com/security/advisories?name=MDVSA-2010:155

www.mandriva.com/security/advisories?name=MDVSA-2011:012

www.openwall.com/lists/oss-security/2010/09/28/10

www.redhat.com/support/errata/RHSA-2011-0164.html

www.securityfocus.com/bid/42596

www.ubuntu.com/usn/USN-1017-1

www.ubuntu.com/usn/USN-1397-1

www.vupen.com/english/advisories/2011/0133

www.vupen.com/english/advisories/2011/0170

access.redhat.com/errata/RHSA-2011:0164

access.redhat.com/security/updates/classification/#moderate

bugzilla.redhat.com/show_bug.cgi?id=628172

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

JSON

Related for VERACODE:24409