Summary
This host is installed with MariaDB and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow remote attacker to crash the program via a crafted geometry feature that specifies a large number of points.
Impact Level: Application
Solution
Upgrade to MariaDB 5.1.68, 5.2.15, 5.3.13, 5.5.30 or later, For updates refer to https://mariadb.org
Insight
Numeric calculation error occurs due to an improper handling of geometry feature while converting a binary string representation of a raw geometry object to a textual representation.
Affected
MariaDB version 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68 on Windows
Detection
Get the installed version of MariaDB with the help of detect NVT and check it is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-1861 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Oracle MySQL Multiple Unspecified vulnerabilities-01 July14 (Windows)
- IBM DB2 OLAP Specification Query Denial of Service Vulnerability
- Oracle MySQL Multiple Unspecified vulnerabilities-04 Feb15 (Windows)
- MongoDB BSON Object Information Disclosure Vulnerability
- IBM DB2 Chaining Functionality DRDA Module DoS Vulnerability