CVE-2016-0651

Name of the Vulnerable Software and Affected Versions Oracle MySQL versions 5.5.46 and earlier

Description The issue is related to errors in the code of the MySQL database management system. It allows an attacker, acting remotely, to affect availability by exploiting vectors related to the Optimizer component. This can result in unauthorized ability to cause a hang or frequently repeatable crash of the MySQL Server, leading to a denial of service. The vulnerability can be exploited by a high-privileged attacker with network access via multiple protocols.

Recommendations For Oracle MySQL versions 5.5.46 and earlier, consider restricting access to the Optimizer component to minimize the risk of exploitation until a patch is available. As a temporary workaround, disabling the Optimizer or limiting its functionality may help prevent attacks. However, the most effective solution would be to update to a version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.