vendor:
MySQL
by:
Unknown
7.5
CVSS
HIGH
Denial-of-Service
CWE
Product Name: MySQL
Affected Version From: <5.0.32
Affected Version To: <5.1.14
Patch Exists: NO
Related CWE:
CPE: mysql
Platforms Tested:
Unknown
Remote Denial-of-Service in MySQL
MySQL is prone to a remote denial-of-service vulnerability because it fails to handle certain specially crafted queries. An attacker can exploit this issue to crash the application, denying access to legitimate users. NOTE: An attacker must be able to execute arbitrary SELECT statements against the database to exploit this issue. This may be done through legitimate means or by exploiting other latent SQL-injection vulnerabilities.
Mitigation:
Unknown