Description

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a crafted request.

Remediation

References

CVE-2010-3683

Related Vulnerabilities

MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31554)

Oracle Database Server CVE-2013-1519 Vulnerability (CVE-2013-1519)

WordPress Plugin Import any XML or CSV File to WordPress Pro Arbitrary File Upload (4.1.0)

WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Security Bypass (1.87)

WordPress Plugin Rife Elementor Extensions & Templates Multiple Cross-Site Scripting Vulnerabilities (1.1.5)

Severity

Medium

Classification

CVE-2010-3683

Tags

Missing Update Known Vulnerabilities