[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250108

 
 

909

 
 

196064

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-3081Date: (C)2006-06-19   (M)2023-12-22


mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.0
Exploit Score: 8.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
BID-18439
SECUNIA-19929
http://www.securityfocus.com/archive/1/437145
http://seclists.org/lists/fulldisclosure/2006/Jun/0434.html
http://www.securityfocus.com/archive/1/437571/100/0/threaded
SECUNIA-20832
SECUNIA-20871
SECUNIA-24479
ADV-2007-0930
APPLE-SA-2007-03-13
DSA-1112
MDKSA-2006:111
RHSA-2007:0083
TA06-208A
TA07-072A
USN-306-1
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373913
http://bugs.mysql.com/bug.php?id=15828
http://docs.info.apple.com/article.html?artnum=305214
mysql-select-dos(27212)
oval:org.mitre.oval:def:9516

CPE    8
cpe:/a:mysql:mysql:5.0.0
cpe:/a:mysql:mysql:5.0.1
cpe:/a:mysql:mysql:5.0.2
cpe:/a:mysql:mysql:5.0.3
...

© SecPod Technologies