MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 does not properly propagate type errors, which allows remote attackers to cause a denial of service (server crash) via crafted arguments to extreme-value functions such as (1) LEAST and (2) GREATEST, related to KILL_BAD_DATA and a "CREATE TABLE ... SELECT."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2011-01-14T18:00:00
Updated: 2024-08-07T03:26:12.217Z
Reserved: 2010-10-07T00:00:00
Link: CVE-2010-3833
Vulnrichment
No data.
NVD
Status : Modified
Published: 2011-01-14T19:01:15.763
Modified: 2019-12-17T20:26:08.287
Link: CVE-2010-3833
Redhat