← voltar
CVE-2010-3681

CVE-2010-3681

EPSS 12.2%
Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using the HANDLER interface and performing "alternate reads from two indexes on a table," which triggers an assertion failure.
Produtos afetados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/34520não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://bugs.mysql.com/bug.php?id=54007http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.htmlhttp://dev.mysql.com/doc/refman/5.5/en/news-5-5-5.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=628680http://secunia.com/advisories/42875http://secunia.com/advisories/42936https://exchange.xforce.ibmcloud.com/vulnerabilities/64685http://www.debian.org/security/2011/dsa-2143http://www.mandriva.com/security/advisories?name=MDVSA-2010:155http://www.mandriva.com/security/advisories?name=MDVSA-2010:222