Description

The in_decimal::set function in item_cmpfunc.cc in MySQL before 5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers to cause a denial of service (crash) via a crafted IF clause that results in a divide-by-zero error and a NULL pointer dereference.

Remediation

References

CVE-2007-2583

Related Vulnerabilities

WordPress Plugin eCommerce Product Catalog for WordPress Cross-Site Request Forgery (3.0.17)

Oracle JRE CVE-2019-2958 Vulnerability (CVE-2019-2958)

Joomla! Core 3.x.x Race Condition (3.0.0 - 3.8.7)

Apache Tomcat 7PK - Security Features Vulnerability (CVE-2014-9634)

WordPress Plugin ULTIMATE VIDEO GALLERY Cross-Site Scripting (1.4)

Severity

Medium

Classification

CVE-2007-2583

Tags

Missing Update Known Vulnerabilities