Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4
CVSSv2

CVE-2010-3679

Published: 11/01/2011 Updated: 17/12/2019
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
VMScore: 405
Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Subscribe to Oracle

Vulnerability Summary

Oracle MySQL 5.1 prior to 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via certain arguments to the BINLOG command, which triggers an access of uninitialized memory, as demonstrated by valgrind.

Vulnerable Product Search on Vulmon Subscribe to Product

oracle mysql 5.1.43

oracle mysql 5.1.33

oracle mysql 5.1.42

oracle mysql 5.1.44

oracle mysql 5.1.39

oracle mysql 5.1.40

oracle mysql 5.1.9

oracle mysql 5.1.7

oracle mysql 5.1.2

oracle mysql 5.1.15

oracle mysql 5.1.21

oracle mysql 5.1.22

oracle mysql 5.1.29

oracle mysql 5.1.26

oracle mysql 5.1.25

mysql mysql 5.1.32

oracle mysql 5.1.46

mysql mysql 5.1.34

oracle mysql 5.1.35

oracle mysql 5.1.41

mysql mysql 5.1.23

oracle mysql 5.1.45

oracle mysql 5.1.8

oracle mysql 5.1.16

oracle mysql 5.1.30

mysql mysql 5.1.5

oracle mysql 5.1.27

oracle mysql 5.1.23

mysql mysql 5.1.37

oracle mysql 5.1.38

oracle mysql 5.1.3

oracle mysql 5.1.4

oracle mysql 5.1.11

oracle mysql 5.1.12

oracle mysql 5.1.17

oracle mysql 5.1.1

oracle mysql 5.1.20

oracle mysql 5.1.28

oracle mysql 5.1.34

oracle mysql 5.1.24

mysql mysql 5.1.31

oracle mysql 5.1.47

oracle mysql 5.1.36

oracle mysql 5.1.48

oracle mysql 5.1.6

oracle mysql 5.1.13

oracle mysql 5.1.14

oracle mysql 5.1.10

oracle mysql 5.1

oracle mysql 5.1.18

oracle mysql 5.1.19

oracle mysql 5.1.37

oracle mysql 5.1.31

Vendor Advisories

Ubuntu Security Notice: mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities
Several security issues were fixed in MySQL ...
Ubuntu Security Notice: mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities
It was discovered that MySQL incorrectly handled certain requests with the UPGRADE DATA DIRECTORY NAME command An authenticated user could exploit this to make MySQL crash, causing a denial of service This issue only affected Ubuntu 910 and 1004 LTS (CVE-2010-2008) ...

Exploits

Exploit DB: Oracle MySQL < 5.1.49 - Malformed 'BINLOG' Arguments Denial of Service
source: wwwsecurityfocuscom/bid/42638/info MySQL is prone to a denial-of-service vulnerability An attacker can exploit this issue to crash the database, denying access to legitimate users Versions prior to MySQL 5149 are vulnerable The following example query is available: mysql&gt; BINLOG '-2079193929'; ...

References

CWE-399https://bugzilla.redhat.com/show_bug.cgi?id=628062http://www.openwall.com/lists/oss-security/2010/09/28/10http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.htmlhttp://bugs.mysql.com/bug.php?id=54393http://www.mandriva.com/security/advisories?name=MDVSA-2010:155http://www.ubuntu.com/usn/USN-1017-1http://www.securityfocus.com/bid/42638http://www.vupen.com/english/advisories/2011/0133http://www.mandriva.com/security/advisories?name=MDVSA-2011:012http://www.redhat.com/support/errata/RHSA-2011-0164.htmlhttp://www.vupen.com/english/advisories/2011/0170http://secunia.com/advisories/42936https://exchange.xforce.ibmcloud.com/vulnerabilities/64687http://www.ubuntu.com/usn/USN-1397-1https://nvd.nist.govhttps://usn.ubuntu.com/1397-1/https://www.exploit-db.com/exploits/34521/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2024-34413CVE-2024-34089CVE-2024-33408localSQLCVE-2024-0402CVE-2024-33910CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook