DB: Oracle MySQL Database Unique SET Column Join Denial of Service
This signature detects attempts to exploit a known denial-of-service vulnerability in Oracle MySQL database server. It is due to an error while handling joins involving a table with a unique SET column. Remote authenticated attackers can exploit this by sending malicious command packets to the server that causes a join with aforementioned condition. A successful attack can cause the target server to terminate, denying service to all users until the server is restarted.
Extended Description
Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a join query that uses a table with a unique SET column.
Affected Products
Mysql mysql
Short Name
DB:MYSQL:UNIQ-SET-COL-JOIN-DOS
Severity
Minor
Recommended
False
Recommended Action
None
Category
DB
Keywords
CVE-2010-3677 Column Database Denial Join MySQL Oracle SET Service Unique bid:42646 of
Release Date
10/25/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Oracle
Mysql
CVSS Score
4.0