Description

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a crafted request.

Remediation

References

CVE-2010-3683

Related Vulnerabilities

WordPress Plugin BackWPup Unspecified Vulnerability (3.4.3)

WordPress Plugin Import and export users and customers Security Bypass (1.15)

WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.35)

MySQL CVE-2012-0578 Vulnerability (CVE-2012-0578)

Oracle HTTP Server Improper Input Validation Vulnerability (CVE-2020-29507)

Severity

Medium

Classification

CVE-2010-3683

Tags

Missing Update Known Vulnerabilities