Main Vulnerability Database Vulnerabilities #VU42158

Input validation error in mysql - CVE-2014-0433

Published: January 15, 2014 / Updated: August 10, 2020

Vulnerability identifier: #VU42158

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2014-0433

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Google

Affected software:
mysql

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote attackers to affect availability via unknown vectors related to Thread Pooling.

How to mitigate CVE-2014-0433

Install update from vendor's website.

Sources

http://secunia.com/advisories/56491
http://security.gentoo.org/glsa/glsa-201409-04.xml
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
http://www.securityfocus.com/bid/64758
http://www.securityfocus.com/bid/64895
https://exchange.xforce.ibmcloud.com/vulnerabilities/90375

Input validation error in mysql - CVE-2014-0433

Detailed vulnerability description

How to mitigate CVE-2014-0433

Sources

Please verify you're human