Lucene search

[email protected]NVD:CVE-2010-3681

HistoryJan 11, 2011 - 8:00 p.m.

CVE-2010-3681

2011-01-1120:00:01

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

5.6

Confidence

Low

EPSS

0.032

Percentile

91.2%

JSON

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using the HANDLER interface and performing “alternate reads from two indexes on a table,” which triggers an assertion failure.

Affected configurations

NVD

Node

mysqlmysqlMatch5.1.5

mysqlmysqlMatch5.1.23

mysqlmysqlMatch5.1.31

mysqlmysqlMatch5.1.32

mysqlmysqlMatch5.1.34

mysqlmysqlMatch5.1.37

oraclemysqlMatch5.1

oraclemysqlMatch5.1.1

oraclemysqlMatch5.1.2

oraclemysqlMatch5.1.3

oraclemysqlMatch5.1.4

oraclemysqlMatch5.1.6

oraclemysqlMatch5.1.7

oraclemysqlMatch5.1.8

oraclemysqlMatch5.1.9

oraclemysqlMatch5.1.10

oraclemysqlMatch5.1.11

oraclemysqlMatch5.1.12

oraclemysqlMatch5.1.13

oraclemysqlMatch5.1.14

oraclemysqlMatch5.1.15

oraclemysqlMatch5.1.16

oraclemysqlMatch5.1.17

oraclemysqlMatch5.1.18

oraclemysqlMatch5.1.19

oraclemysqlMatch5.1.20

oraclemysqlMatch5.1.21

oraclemysqlMatch5.1.22

oraclemysqlMatch5.1.23a

oraclemysqlMatch5.1.24

oraclemysqlMatch5.1.25

oraclemysqlMatch5.1.26

oraclemysqlMatch5.1.27

oraclemysqlMatch5.1.28

oraclemysqlMatch5.1.29

oraclemysqlMatch5.1.30

oraclemysqlMatch5.1.31sp1

oraclemysqlMatch5.1.33

oraclemysqlMatch5.1.34sp1

oraclemysqlMatch5.1.35

oraclemysqlMatch5.1.36

oraclemysqlMatch5.1.37sp1

oraclemysqlMatch5.1.38

oraclemysqlMatch5.1.39

oraclemysqlMatch5.1.40

oraclemysqlMatch5.1.40sp1

oraclemysqlMatch5.1.41

oraclemysqlMatch5.1.42

oraclemysqlMatch5.1.43

oraclemysqlMatch5.1.43sp1

oraclemysqlMatch5.1.44

oraclemysqlMatch5.1.45

oraclemysqlMatch5.1.46

oraclemysqlMatch5.1.46sp1

oraclemysqlMatch5.1.47

oraclemysqlMatch5.1.48

Node

oraclemysqlMatch5.5.0

oraclemysqlMatch5.5.1

oraclemysqlMatch5.5.2

oraclemysqlMatch5.5.3

oraclemysqlMatch5.5.4

References

bugs.mysql.com/bug.php?id=54007

dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html

dev.mysql.com/doc/refman/5.5/en/news-5-5-5.html

lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html

secunia.com/advisories/42875

secunia.com/advisories/42936

www.debian.org/security/2011/dsa-2143

www.mandriva.com/security/advisories?name=MDVSA-2010:155

www.mandriva.com/security/advisories?name=MDVSA-2010:222

www.mandriva.com/security/advisories?name=MDVSA-2011:012

www.openwall.com/lists/oss-security/2010/09/28/10

www.redhat.com/support/errata/RHSA-2010-0824.html

www.redhat.com/support/errata/RHSA-2010-0825.html

www.redhat.com/support/errata/RHSA-2011-0164.html

www.securityfocus.com/bid/42633

www.turbolinux.co.jp/security/2011/TLSA-2011-3j.txt

www.ubuntu.com/usn/USN-1017-1

www.ubuntu.com/usn/USN-1397-1

www.vupen.com/english/advisories/2011/0105

www.vupen.com/english/advisories/2011/0133

www.vupen.com/english/advisories/2011/0170

www.vupen.com/english/advisories/2011/0345

bugzilla.redhat.com/show_bug.cgi?id=628680

exchange.xforce.ibmcloud.com/vulnerabilities/64685

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

5.6

Confidence

Low

EPSS

0.032

Percentile

91.2%

JSON

Related for NVD:CVE-2010-3681

ubuntucve1 prion1 cvelist1 veracode1 cve1 openvas28 nessus26 oraclelinux3 centos2 redhat3 securityvulns3 fedora2 debian2 osv1 ubuntu2 gentoo1