VDB
VAR-201904-0985
VAR-201904-0985
PUBLISHED
SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases).
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
Timeline
- Apr 3, 2009 CVE Published
- Jan 28, 2019 PoC Published
References
- http://seclists.org/fulldisclosure/2019/Jan/62 url
- http://seclists.org/fulldisclosure/2019/Jan/64 url
- http://seclists.org/fulldisclosure/2019/Jan/66 url
- http://seclists.org/fulldisclosure/2019/Jan/67 url
- http://seclists.org/fulldisclosure/2019/Jan/68 url
- http://seclists.org/fulldisclosure/2019/Jan/69 url
- http://www.securityfocus.com/bid/106698 url
- https://seclists.org/bugtraq/2019/Jan/28 url
- https://seclists.org/bugtraq/2019/Jan/29 url
- https://seclists.org/bugtraq/2019/Jan/31 url
- https://seclists.org/bugtraq/2019/Jan/32 url
- https://seclists.org/bugtraq/2019/Jan/33 url
- https://seclists.org/bugtraq/2019/Jan/39 url
- https://support.apple.com/kb/HT209443 url
- https://support.apple.com/kb/HT209446 url
- https://support.apple.com/kb/HT209447 url
- https://support.apple.com/kb/HT209448 url
- https://support.apple.com/kb/HT209450 url
- https://support.apple.com/kb/HT209451 url
- https://sqlite.org/src/info/1a84668dcfdebaf12415d url
…and 2 more