Описание
Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.
Ссылки
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
- Not Applicable
- Third Party Advisory
- Broken Link
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Issue Tracking
- Broken LinkPatch
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
- Not Applicable
- Third Party Advisory
- Broken Link
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Одно из
Одно из
Одно из
EPSS
4 Medium
CVSS2
Дефекты
Связанные уязвимости
Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.
Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.
Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5. ...
Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.
EPSS
4 Medium
CVSS2