MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 does not properly propagate type errors, which allows remote attackers to cause a denial of service (server crash) via crafted arguments to extreme-value functions such as (1) LEAST and (2) GREATEST, related to KILL_BAD_DATA and a "CREATE TABLE ... SELECT."
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-01-14T18:00:00

Updated: 2024-08-07T03:26:12.217Z

Reserved: 2010-10-07T00:00:00

Link: CVE-2010-3833

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2011-01-14T19:01:15.763

Modified: 2019-12-17T20:26:08.287

Link: CVE-2010-3833

cve-icon Redhat

Severity : Moderate

Publid Date: 2010-08-08T00:00:00Z

Links: CVE-2010-3833 - Bugzilla