Description

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using the HANDLER interface and performing "alternate reads from two indexes on a table," which triggers an assertion failure.

Remediation

References

CVE-2010-3681

Related Vulnerabilities

Coppermine Cross-site Scripting (XSS) Vulnerability (CVE-2018-14478)

Grafana Incorrect Authorization Vulnerability (CVE-2021-28146)

WordPress Plugin MW WP Form Arbitrary File Upload (5.0.1)

WordPress Plugin Facebook Page Feed Timeline Cross-Site Scripting (1.0)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5012)

Severity

Medium

Classification

CVE-2010-3681

Tags

Missing Update Known Vulnerabilities