Description
MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (mysqld server crash) by performing a user-variable assignment in a logical expression that is calculated and stored in a temporary table for GROUP BY, then causing the expression value to be used after the table is created, which causes the expression to be re-evaluated instead of accessing its value from the table.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-ViperGB Cross-Site Scripting (1.3.15)
WordPress Plugin RestroPress-Online Food Ordering System Security Bypass (2.8.3)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1950)
Apache HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2022-22721)