CVE-2007-2583

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The in_decimal::set function in item_cmpfunc.cc in MySQL before 5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers to cause a denial of service (crash) via a crafted IF clause that results in a divide-by-zero error and a NULL pointer dereference.

References

http://bugs.mysql.com/bug.php?id=27513

http://lists.mysql.com/commits/23685

http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html

http://packetstormsecurity.com/files/124295/MySQL-5.0.x-Denial-Of-Service.html

http://secunia.com/advisories/25188

http://secunia.com/advisories/25196

http://secunia.com/advisories/25255

http://secunia.com/advisories/25389

http://secunia.com/advisories/25946

http://secunia.com/advisories/27155

http://secunia.com/advisories/27823

http://secunia.com/advisories/28838

http://secunia.com/advisories/30351

http://security.gentoo.org/glsa/glsa-200705-11.xml

http://www.debian.org/security/2007/dsa-1413

http://www.exploit-db.com/exploits/30020

http://www.mandriva.com/security/advisories?name=MDKSA-2007:139

http://www.osvdb.org/34734

http://www.redhat.com/support/errata/RHSA-2008-0364.html

http://www.securityfocus.com/bid/23911

http://www.trustix.org/errata/2007/0017/

http://www.vupen.com/english/advisories/2007/1731

https://exchange.xforce.ibmcloud.com/vulnerabilities/34232

https://issues.rpath.com/browse/RPL-1356

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9930

https://usn.ubuntu.com/528-1/

Details

Source: MITRE

Published: 2007-05-10

Updated: 2019-12-17

Type: CWE-189

Risk Information

CVSS v2

Base Score: 4

Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8

Severity: MEDIUM

Tenable Plugins

View all (13 total)

IDNameProductFamilySeverity
60406Scientific Linux Security Update : mysql on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
17832MySQL 5.0 < 5.0.40 Multiple VulnerabilitiesNessusDatabases
medium
41184SuSE9 Security Update : MySQL (YOU Patch Number 12044)NessusSuSE Local Security Checks
high
32425RHEL 5 : mysql (RHSA-2008:0364)NessusRed Hat Local Security Checks
medium
30182SuSE 10 Security Update : MySQL (ZYPP Patch Number 4879)NessusSuSE Local Security Checks
high
30180openSUSE 10 Security Update : libmysqlclient-devel (libmysqlclient-devel-4873)NessusSuSE Local Security Checks
high
28336Debian DSA-1413-1 : mysql - multiple vulnerabilitiesNessusDebian Local Security Checks
medium
28133Ubuntu 6.06 LTS / 6.10 / 7.04 : mysql-dfsg-5.0 vulnerabilities (USN-528-1)NessusUbuntu Local Security Checks
medium
25669Mandrake Linux Security Advisory : MySQL (MDKSA-2007:139)NessusMandriva Local Security Checks
medium
25242MySQL 5.1 < 5.1.18 Multiple VulnerabilitiesNessusDatabases
medium
3985Oracle MySQL < 5.0.40 IF Query NULL Dereference DoSNessus Network MonitorDatabase
medium
25198MySQL Crafted IF Clause Divide-by-zero NULL Dereference DoSNessusDatabases
medium
801155MySQL < 5.0.40 IF Query NULL Dereference DoSLog Correlation EngineDatabase
medium