| Vulnerability Name: | CVE-2007-1420 (CCN-32911) | ||||||||||||||||
| Assigned: | 2007-03-09 | ||||||||||||||||
| Published: | 2007-03-09 | ||||||||||||||||
| Updated: | 2019-12-17 | ||||||||||||||||
| Summary: | MySQL 5.x before 5.0.36 allows local users to cause a denial of service (database crash) by performing information_schema table subselects and using ORDER BY to sort a single-row result, which prevents certain structure elements from being initialized and triggers a NULL dereference in the filesort function. | ||||||||||||||||
| CVSS v3 Severity: | 3.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L)
| ||||||||||||||||
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P) 1.6 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
3.0 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P/E:U/RL:OF/RC:C)
| ||||||||||||||||
| Vulnerability Type: | CWE-Other CWE-476 | ||||||||||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||||||||||
| References: | Source: CCN Type: Full-Disclosure Mailing List, Fri Mar 09 2007 - 13:06:12 CST SEC Consult SA-20070309-0 :: MySQL 5 Single Row Subselect Denial of Service Source: CONFIRM Type: UNKNOWN http://bugs.mysql.com/bug.php?id=24630 Source: MITRE Type: CNA CVE-2007-1420 Source: CONFIRM Type: Vendor Advisory http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-36.html Source: CCN Type: RHSA-2008-0364 Low: mysql security and bug fix update Source: CCN Type: SA24483 MySQL Single-Row Subselect Denial of Service Source: SECUNIA Type: Vendor Advisory 24483 Source: SECUNIA Type: Vendor Advisory 24609 Source: SECUNIA Type: Vendor Advisory 25196 Source: SECUNIA Type: Vendor Advisory 25389 Source: SECUNIA Type: Vendor Advisory 25946 Source: SECUNIA Type: Vendor Advisory 30351 Source: GENTOO Type: UNKNOWN GLSA-200705-11 Source: SREASON Type: UNKNOWN 2413 Source: CCN Type: SECTRACK ID: 1017746 MySQL Single Row Subselect Statements Let Remote Users Deny Service Source: CCN Type: GLSA-200705-11 MySQL: Two Denial of Service vulnerabilities Source: MANDRIVA Type: UNKNOWN MDKSA-2007:139 Source: CCN Type: MySQL Web site MySQL AB ::The world's most popular open source database Source: REDHAT Type: Vendor Advisory RHSA-2008:0364 Source: MISC Type: Exploit http://www.sec-consult.com/284.html Source: BUGTRAQ Type: UNKNOWN 20070309 SEC Consult SA-20070309-0 :: MySQL 5 Single Row Subselect Denial of Service Source: BID Type: Exploit, Patch 22900 Source: CCN Type: BID-22900 MySQL Single Row SubSelect Remote Denial Of Service Vulnerability Source: SECTRACK Type: UNKNOWN 1017746 Source: CCN Type: USN-440-1 MySQL vulnerability Source: UBUNTU Type: UNKNOWN USN-440-1 Source: VUPEN Type: Vendor Advisory ADV-2007-0908 Source: XF Type: UNKNOWN mysql-filesort-dos(32911) Source: CONFIRM Type: UNKNOWN https://issues.rpath.com/browse/RPL-1127 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:9530 | ||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||
| Oval Definitions | |||||||||||||||||
| |||||||||||||||||
| BACK | |||||||||||||||||