4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
68.5%
The in_decimal::set function in item_cmpfunc.cc in MySQL before 5.0.40, and
5.1 before 5.1.18-beta, allows context-dependent attackers to cause a
denial of service (crash) via a crafted IF clause that results in a
divide-by-zero error and a NULL pointer dereference.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | mysql-dfsg-5.0 | < 5.0.22-0ubuntu6.06.5 | UNKNOWN |
ubuntu | 6.10 | noarch | mysql-dfsg-5.0 | < 5.0.24a-9ubuntu2.1 | UNKNOWN |
ubuntu | 7.04 | noarch | mysql-dfsg-5.0 | < 5.0.38-0ubuntu1.1 | UNKNOWN |