CVE-2010-3681
CVE-2010-3681
Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using the HANDLER interface and performing "alternate reads from two indexes on a table," which triggers an assertion failure.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/34520unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.mysql.com/bug.php?id=54007http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.htmlhttp://dev.mysql.com/doc/refman/5.5/en/news-5-5-5.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=628680http://secunia.com/advisories/42875http://secunia.com/advisories/42936https://exchange.xforce.ibmcloud.com/vulnerabilities/64685http://www.debian.org/security/2011/dsa-2143http://www.mandriva.com/security/advisories?name=MDVSA-2010:155http://www.mandriva.com/security/advisories?name=MDVSA-2010:222