Lucene search

[email protected]NVD:CVE-2010-3680

HistoryJan 11, 2011 - 8:00 p.m.

CVE-2010-3680

2011-01-1120:00:01

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

5.6

Confidence

Low

EPSS

0.056

Percentile

93.3%

JSON

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by creating temporary tables with nullable columns while using InnoDB, which triggers an assertion failure.

Affected configurations

NVD

Node

mysqlmysqlMatch5.1.5

mysqlmysqlMatch5.1.23

mysqlmysqlMatch5.1.31

mysqlmysqlMatch5.1.32

mysqlmysqlMatch5.1.34

mysqlmysqlMatch5.1.37

oraclemysqlMatch5.1

oraclemysqlMatch5.1.1

oraclemysqlMatch5.1.2

oraclemysqlMatch5.1.3

oraclemysqlMatch5.1.4

oraclemysqlMatch5.1.6

oraclemysqlMatch5.1.7

oraclemysqlMatch5.1.8

oraclemysqlMatch5.1.9

oraclemysqlMatch5.1.10

oraclemysqlMatch5.1.11

oraclemysqlMatch5.1.12

oraclemysqlMatch5.1.13

oraclemysqlMatch5.1.14

oraclemysqlMatch5.1.15

oraclemysqlMatch5.1.16

oraclemysqlMatch5.1.17

oraclemysqlMatch5.1.18

oraclemysqlMatch5.1.19

oraclemysqlMatch5.1.20

oraclemysqlMatch5.1.21

oraclemysqlMatch5.1.22

oraclemysqlMatch5.1.23a

oraclemysqlMatch5.1.24

oraclemysqlMatch5.1.25

oraclemysqlMatch5.1.26

oraclemysqlMatch5.1.27

oraclemysqlMatch5.1.28

oraclemysqlMatch5.1.29

oraclemysqlMatch5.1.30

oraclemysqlMatch5.1.31sp1

oraclemysqlMatch5.1.33

oraclemysqlMatch5.1.34sp1

oraclemysqlMatch5.1.35

oraclemysqlMatch5.1.36

oraclemysqlMatch5.1.37sp1

oraclemysqlMatch5.1.38

oraclemysqlMatch5.1.39

oraclemysqlMatch5.1.40

oraclemysqlMatch5.1.40sp1

oraclemysqlMatch5.1.41

oraclemysqlMatch5.1.42

oraclemysqlMatch5.1.43

oraclemysqlMatch5.1.43sp1

oraclemysqlMatch5.1.44

oraclemysqlMatch5.1.45

oraclemysqlMatch5.1.46

oraclemysqlMatch5.1.46sp1

oraclemysqlMatch5.1.47

oraclemysqlMatch5.1.48

References

bugs.mysql.com/bug.php?id=54044

dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html

secunia.com/advisories/42875

secunia.com/advisories/42936

www.debian.org/security/2011/dsa-2143

www.mandriva.com/security/advisories?name=MDVSA-2010:155

www.mandriva.com/security/advisories?name=MDVSA-2010:222

www.mandriva.com/security/advisories?name=MDVSA-2011:012

www.openwall.com/lists/oss-security/2010/09/28/10

www.redhat.com/support/errata/RHSA-2010-0825.html

www.redhat.com/support/errata/RHSA-2011-0164.html

www.securityfocus.com/bid/42598

www.turbolinux.co.jp/security/2011/TLSA-2011-3j.txt

www.ubuntu.com/usn/USN-1017-1

www.ubuntu.com/usn/USN-1397-1

www.vupen.com/english/advisories/2011/0105

www.vupen.com/english/advisories/2011/0133

www.vupen.com/english/advisories/2011/0170

www.vupen.com/english/advisories/2011/0345

bugzilla.redhat.com/show_bug.cgi?id=628192

exchange.xforce.ibmcloud.com/vulnerabilities/64686

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

5.6

Confidence

Low

EPSS

0.056

Percentile

93.3%

JSON

Related for NVD:CVE-2010-3680

cvelist1 cve1 veracode1 ubuntucve1 prion1 openvas25 securityvulns3 nessus18 fedora2 debian2 osv1 redhat2 centos1 oraclelinux2 ubuntu2 gentoo1