VDB
CVE-2007-1420
CVE-2007-1420
PUBLISHED
Reported by mitre · Published March 12, 2007
MySQL 5.x before 5.0.36 allows local users to cause a denial of service (database crash) by performing information_schema table subselects and using ORDER BY to sort a single-row result, which prevents certain structure elements from being initialized and triggers a NULL dereference in the filesort function.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a, n/a |
Exploit Intelligence
- http://www.sec-consult.com/284.html (vulncheck-nvd)
- http://www.securityfocus.com/bid/22900 (vulncheck-nvd)
Timeline
- Mar 12, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- x_refsource_CONFIRM
- 25196 third-party-advisoryx_refsource_SECUNIA
- 24609 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- 25389 third-party-advisoryx_refsource_SECUNIA
- USN-440-1 vendor-advisoryx_refsource_UBUNTU
- GLSA-200705-11 vendor-advisoryx_refsource_GENTOO
- 2413 third-party-advisoryx_refsource_SREASON
- 25946 third-party-advisoryx_refsource_SECUNIA
- ADV-2007-0908 vdb-entryx_refsource_VUPEN
- 20070309 SEC Consult SA-20070309-0 :: MySQL 5 Single Row Subselect Denial of Service mailing-listx_refsource_BUGTRAQ
- 24483 third-party-advisoryx_refsource_SECUNIA
- 1017746 vdb-entryx_refsource_SECTRACK
- x_refsource_MISC
- MDKSA-2007:139 vendor-advisoryx_refsource_MANDRIVA
- 30351 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- oval:org.mitre.oval:def:9530 vdb-entrysignaturex_refsource_OVAL
- 22900 vdb-entryx_refsource_BID
- RHSA-2008:0364 vendor-advisoryx_refsource_REDHAT