CVE-2010-1849Mysql vulnerability

6 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
1.9%
top 16.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
MysqlOracle Mysql
Timeline
PublishedJun 8
Latest updateMay 13

Description

The my_net_skip_rest function in sql/net_serv.cc in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by sending a large number of packets that exceed the maximum length.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDmysql/mysql23 versions+22
NVDoracle/mysql62 versions+61

🔴Vulnerability Details

1
GHSA
GHSA-vqf8-pfrj-qw7g: The my_net_skip_rest function in sql/net_serv2022-05-13

📋Vendor Advisories

3
Ubuntu
MySQL vulnerabilities2012-03-12
Ubuntu
MySQL vulnerabilities2010-06-09
Red Hat
mysql: over-sized packet denial of service vulnerability2010-05-13

💬Community

1
Bugzilla
CVE-2010-1849 mysql: over-sized packet denial of service vulnerability2010-05-13
CVE-2010-1849 — Mysql vulnerability | cvebase