ID:4444 - Exploit for Input validation error in mysql - CVE-2010-3683

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:4444 - Exploit for Input validation error in mysql - CVE-2010-3683

ID:4444 - Exploit for Input validation error in mysql - CVE-2010-3683

Published: August 11, 2020


Vulnerability identifier: #VU45469
Vulnerability risk: Low
CVE-ID: CVE-2010-3683
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
mysql

Link to public exploit:


Vulnerability description

The vulnerability allows a remote #AU# to perform service disruption.

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a crafted request.


Remediation

Install update from vendor's website.