Description
Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code, as demonstrated using certain variations of the (1) USE, (2) SHOW TABLES, (3) DESCRIBE, (4) SHOW FIELDS FROM, (5) SHOW COLUMNS FROM, (6) SHOW INDEX FROM, (7) CREATE TABLE, (8) DROP TABLE, (9) ALTER TABLE, (10) DELETE FROM, (11) UPDATE, and (12) SET PASSWORD commands.
Remediation
References
Related Vulnerabilities
WordPress Plugin API Bearer Auth Cross-Site Scripting (20181229)
Oracle Application Server Other Vulnerability (CVE-2002-0566)
WordPress Plugin ImageLinks Interactive Image Builder for WordPress Cross-Site Scripting (1.5.2)
SharePoint CVE-2020-17115 Vulnerability (CVE-2020-17115)
Oracle Database Server CVE-2018-3110 Vulnerability (CVE-2018-3110)