[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2013-1861Date: (C)2013-03-29   (M)2023-12-22


MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68, and Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote attackers to cause a denial of service (crash) via a crafted geometry feature that specifies a large number of points, which is not properly handled when processing the binary representation of this feature, related to a numeric calculation error.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECUNIA-52639
SECUNIA-54300
BID-58511
OSVDB-91415
DSA-2818
GLSA-201409-04
SUSE-SU-2013:1390
SUSE-SU-2013:1529
USN-1909-1
file:///home/hf/wmar/todo-424/
http://seclists.org/oss-sec/2013/q1/671
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
https://bugzilla.redhat.com/show_bug.cgi?id=919247
https://mariadb.atlassian.net/browse/MDEV-4252
mysql-mariadb-cve20131861-dos(82895)
openSUSE-SU-2013:1335
openSUSE-SU-2013:1410

CPE    9
cpe:/o:redhat:enterprise_linux:5
cpe:/o:opensuse:opensuse:12.2
cpe:/o:opensuse:opensuse:12.3
cpe:/o:canonical:ubuntu_linux:13.04
...
CWE    1
CWE-119
OVAL    5
oval:org.secpod.oval:def:701371
oval:org.secpod.oval:def:14264
oval:org.secpod.oval:def:1300218
oval:org.secpod.oval:def:601178
...

© SecPod Technologies