CVE-2010-3678

Name of the Vulnerable Software and Affected Versions Oracle MySQL versions prior to 5.1.49

Description The issue allows remote authenticated users to cause a denial of service, resulting in a crash, by performing certain operations with NULL arguments. This can be achieved through (1) IN or (2) CASE operations, where the NULL arguments are either explicitly specified or indirectly provided by the WITH ROLLUP modifier.

Recommendations For Oracle MySQL versions prior to 5.1.49, update to version 5.1.49 or later to resolve the issue.