Description

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 does not properly propagate type errors, which allows remote attackers to cause a denial of service (server crash) via crafted arguments to extreme-value functions such as (1) LEAST and (2) GREATEST, related to KILL_BAD_DATA and a "CREATE TABLE ... SELECT."

Remediation

References

CVE-2010-3833

Related Vulnerabilities

WordPress Plugin Debug Bar Unspecified Vulnerability (0.8)

Jboss EAP Incorrect Authorization Vulnerability (CVE-2019-14843)

WordPress Plugin WP Symposium Cross-Site Scripting (11.11.26)

WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Cross-Site Scripting (1.3.6.2)

WordPress Plugin Portfolio-WordPress Portfolio Cross-Site Scripting (2.8.10)

Severity

Medium

Classification

CVE-2010-3833

Tags

Missing Update Known Vulnerabilities