Description

MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service (crash or hang) via multiple threads that simultaneously alter MERGE table UNIONs.

Remediation

References

CVE-2004-0837

Related Vulnerabilities

OpenSSL Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2015-3196)

LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-18358)

Nexus Repository Manager Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-43961)

Drupal Improper Access Control Vulnerability (CVE-2015-2559)

WordPress Plugin WooCommerce-Store Toolkit Privilege Escalation (1.5.6)

Severity

Low

Classification

CVE-2004-0837

Tags

Missing Update Known Vulnerabilities