| Revision Date: | 2013-09-23 | Version: | 14 |
| Title: | MySQL 5.0 and 5.1 SELECT Statement DOS Vulnerability |
| Description: | mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2009-4019
|
| Platform(s): | Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | MySQL Server 5.0
MySQL Server 5.1
|
| Definition Synopsis |
| AND MySQL 5.0 is installed
AND MySQL Server 5.0 version is less than 5.0.88
OR
MySQL 5.1 is installed
AND MySQL Server 5.1 version is less than 5.1.41
|