PT-2011-1426 · Oracle+1 · Mysql Server+1
Jan Lieskovsky
·
Published
2011-01-11
·
Updated
2019-12-17
·
CVE-2010-3679
CVSS v2.0
4.0
Medium
| Vector | AV:N/AC:L/Au:S/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Oracle MySQL versions prior to 5.1.49
Description
The issue allows remote authenticated users to cause a denial of service, resulting in the mysqld daemon crash. This is achieved by providing certain arguments to the BINLOG command, which triggers an access of uninitialized memory.
Recommendations
For versions prior to 5.1.49, update to version 5.1.49 or later to resolve the issue.
Exploit
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mysql Server
Red Hat