Description

Signed integer vulnerability in the COM_TABLE_DUMP package for MySQL 3.23.x before 3.23.54 allows remote attackers to cause a denial of service (crash or hang) in mysqld by causing large negative integers to be provided to a memcpy call.

Remediation

References

CVE-2002-1373

Related Vulnerabilities

WordPress Plugin Captcha by BestWebSoft SQL Injection (4.1.7)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7848)

WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (1.0.3)

WebLogic CVE-2019-2889 Vulnerability (CVE-2019-2889)

Ruby on Rails Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-2930)

Severity

Medium

Classification

CVE-2002-1373

Tags

Missing Update Known Vulnerabilities