sql_select.cc in MySQL 5.0.x prior to 5.0.32 and 5.1.x prior to 5.1.14 allows remote authenticated users to cause a denial of service (crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table, as originally demonstrated using ORDER BY.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mysql mysql |
||
canonical ubuntu linux 7.04 |
||
canonical ubuntu linux 7.10 |
||
canonical ubuntu linux 6.06 |
||
canonical ubuntu linux 6.10 |