Oracle MySQL 'COM_FIELD_LIST' Command Buffer Overflow Vulnerability Network Vulnerability

Summary

MySQL is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An authenticated attacker can leverage this issue to execute arbitrary code within the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. Versions prior to MySQL 5.1.47 are vulnerable.

References

http://bugs.mysql.com/bug.php?id=53237
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-47.html
http://www.mysql.com/
http://www.securityfocus.com/bid/40106

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-1850

CVSS	Base Score: 6.0 AV:N/AC:M/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Firebird Relational Database CNCT Group Number Buffer Overflow Vulnerability (Win)
IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability
NTP Stack Buffer Overflow Vulnerability
IpTools Tiny TCP/IP Servers Remote Buffer Overflow Vulnerability
SquidGuard Multiple Buffer Overflow Vulnerabilities

Take action and discover your vulnerabilities