CVE-2010-3683

Published: Jan 11, 2011Modified: Apr 29, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a crafted request.

Affected (61)

Products: Mysql: Mysql · Oracle: Mysql

1 product

1 product

Configuration A

56 vulnerable

Vulnerable Software	Affected Versions
Mysql Mysql	Version 5.1.23
Mysql Mysql	Version 5.1.31
Mysql Mysql	Version 5.1.32
Mysql Mysql	Version 5.1.34
Mysql Mysql	Version 5.1.37
Mysql Mysql	Version 5.1.5
Oracle Mysql	Version 5.1.10
Oracle Mysql	Version 5.1.11
Oracle Mysql	Version 5.1.12
Oracle Mysql	Version 5.1.13
Oracle Mysql	Version 5.1.14
Oracle Mysql	Version 5.1.15
Oracle Mysql	Version 5.1.16
Oracle Mysql	Version 5.1.17
Oracle Mysql	Version 5.1.18
Oracle Mysql	Version 5.1.19
Oracle Mysql	Version 5.1.1
Oracle Mysql	Version 5.1.20
Oracle Mysql	Version 5.1.21
Oracle Mysql	Version 5.1.22
Oracle Mysql	Version 5.1.23 a
Oracle Mysql	Version 5.1.24
Oracle Mysql	Version 5.1.25
Oracle Mysql	Version 5.1.26
Oracle Mysql	Version 5.1.27
Oracle Mysql	Version 5.1.28
Oracle Mysql	Version 5.1.29
Oracle Mysql	Version 5.1.2
Oracle Mysql	Version 5.1.30
Oracle Mysql	Version 5.1.31 sp1
Oracle Mysql	Version 5.1.33
Oracle Mysql	Version 5.1.34 sp1
Oracle Mysql	Version 5.1.35
Oracle Mysql	Version 5.1.36
Oracle Mysql	Version 5.1.37 sp1
Oracle Mysql	Version 5.1.38
Oracle Mysql	Version 5.1.39
Oracle Mysql	Version 5.1.3
Oracle Mysql	Version 5.1.40
Oracle Mysql	Version 5.1.40 sp1
Oracle Mysql	Version 5.1.41
Oracle Mysql	Version 5.1.42
Oracle Mysql	Version 5.1.43
Oracle Mysql	Version 5.1.43 sp1
Oracle Mysql	Version 5.1.44
Oracle Mysql	Version 5.1.45
Oracle Mysql	Version 5.1.46
Oracle Mysql	Version 5.1.46 sp1
Oracle Mysql	Version 5.1.47
Oracle Mysql	Version 5.1.48
Oracle Mysql	Version 5.1.4
Oracle Mysql	Version 5.1.6
Oracle Mysql	Version 5.1.7
Oracle Mysql	Version 5.1.8
Oracle Mysql	Version 5.1.9
Oracle Mysql	Version 5.1

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Oracle Mysql	Version 5.5.0
Oracle Mysql	Version 5.5.1
Oracle Mysql	Version 5.5.2
Oracle Mysql	Version 5.5.3
Oracle Mysql	Version 5.5.4

References (34)

http://bugs.mysql.com/bug.php?id=52512

Source: cve@mitre.org

ExploitPatch

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html

Source: cve@mitre.org

http://dev.mysql.com/doc/refman/5.5/en/news-5-5-5.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html

Source: cve@mitre.org

http://secunia.com/advisories/42936

Source: cve@mitre.org

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2010:155

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2011:012

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2010/09/28/10

Source: cve@mitre.org

ExploitPatch

http://www.redhat.com/support/errata/RHSA-2011-0164.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/42625

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-1017-1

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-1397-1

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0133

Source: cve@mitre.org

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0170

Source: cve@mitre.org

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=628698

Source: cve@mitre.org

ExploitPatch

https://exchange.xforce.ibmcloud.com/vulnerabilities/64683

Source: cve@mitre.org

http://bugs.mysql.com/bug.php?id=52512

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatch

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://dev.mysql.com/doc/refman/5.5/en/news-5-5-5.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/42936

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2010:155

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2011:012

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2010/09/28/10

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatch

http://www.redhat.com/support/errata/RHSA-2011-0164.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/42625

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1017-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1397-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2011/0133

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0170

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=628698

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatch

https://exchange.xforce.ibmcloud.com/vulnerabilities/64683

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.