Summary
This host is installed with MariaDB and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow remote attacker to crash the program via a crafted geometry feature that specifies a large number of points.
Impact Level: Application
Solution
Upgrade to MariaDB 5.1.68, 5.2.15, 5.3.13, 5.5.30 or later, For updates refer to https://mariadb.org
Insight
Numeric calculation error occurs due to an improper handling of geometry feature while converting a binary string representation of a raw geometry object to a textual representation.
Affected
MariaDB version 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68 on Windows
Detection
Get the installed version of MariaDB with the help of detect NVT and check it is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-1861 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Oracle MySQL Multiple Unspecified vulnerabilities - 03 May14 (Windows)
- Oracle MySQL Multiple Unspecified vulnerabilities - 02 May14 (Windows)
- Oracle MySQL Server Multiple Vulnerabilities-02 Nov12 (Windows)
- Oracle MySQL 'TEMPORARY InnoDB' Tables Denial Of Service Vulnerability
- MySQL Multiple Denial of Service Vulnerabilities