Vigil@nce: MySQL, several denials of service
October 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
A local attacker can use several malicious queries, in order to
stop MySQL.
– Severity: 1/4
– Creation date: 04/10/2010
DESCRIPTION OF THE VULNERABILITY
Several denials of service were announced in MySQL.
An attacker can use LEAST() or GREATEST(), in order to stop the
server. [severity:1/4; 55826]
An attacker can group with a temporary table, in order to stop the
server. [severity:1/4; 55568]
An attacker can set a variable in a GROUP BY, in order to stop the
server. [severity:1/4; 55564]
An attacker can prepare a view containing LIKE, in order to stop
the server. [severity:1/4; 54568]
An attacker can use GROUP_CONCAT() and WITH ROLLUP, in order to
stop the server. [severity:1/4; 54476]
An attacker can use LEAST() or GREATEST() with LONGBLOB, in order
to stop the server. [severity:1/4; 54461]
An attacker can use recursive joints, in order to generate an
infinite loop. [severity:1/4; 53544]
A local attacker can therefore use several malicious queries, in
order to stop MySQL.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/MySQL-several-denials-of-service-10000