Description

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a prepared statement that uses GROUP_CONCAT with the WITH ROLLUP modifier, probably triggering a use-after-free error when a copied object is modified in a way that also affects the original object.

Remediation

References

CVE-2010-3837

Related Vulnerabilities

Apache Tomcat Other Vulnerability (CVE-2003-0043)

WordPress Plugin I Recommend This SQL Injection (3.7.7)

WordPress Plugin Sliding Recent Posts Cross-Site Request Forgery (1.0)

WordPress Plugin Daily Prayer Time Cross-Site Request Forgery (2023.03.08)

WordPress Plugin Essential Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (4.5.3)

Severity

Medium

Classification

CVE-2010-3837

Tags

Missing Update Known Vulnerabilities