CVE-2010-3683
CVE-2010-3683
Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a crafted request.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/34510não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://bugs.mysql.com/bug.php?id=52512http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.htmlhttp://dev.mysql.com/doc/refman/5.5/en/news-5-5-5.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=628698http://secunia.com/advisories/42936https://exchange.xforce.ibmcloud.com/vulnerabilities/64683http://www.mandriva.com/security/advisories?name=MDVSA-2010:155http://www.mandriva.com/security/advisories?name=MDVSA-2011:012http://www.openwall.com/lists/oss-security/2010/09/28/10http://www.redhat.com/support/errata/RHSA-2011-0164.html