Vulnerability & Exploit Database

Back to search

MySQL IF Query Denial of Service

Severity CVSS Published Added Modified
4 (AV:N/AC:L/Au:S/C:N/I:N/A:P) March 09, 2007 July 16, 2009 May 27, 2016

Description

The in_decimal::set function in item_cmpfunc.cc in MySQL before 5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers to cause a denial of service (crash) via a crafted IF clause that results in a divide-by-zero error and a NULL pointer dereference.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

mysql-upgrade-5_0_40

Related Vulnerabilities