CVE-2006-3081 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-3081
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3081

Description: mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/27212 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-306-1 SAID Secunia Advisory: SA20832 Secunia Advisory: SA19929 Secunia Advisory: SA20871 Secunia Advisory: SA24479 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0083.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2006:111 FULLDISC http://seclists.org/lists/fulldisclosure/2006/Jun/0434.html DEBIAN http://www.debian.org/security/2006/dsa-1112 CONFIRM http://bugs.mysql.com/bug.php?id=15828 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373913 http://docs.info.apple.com/article.html?artnum=305214 CERT http://www.us-cert.gov/cas/techalerts/TA07-072A.html http://www.us-cert.gov/cas/techalerts/TA06-208A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/437571/100/0/threaded http://www.securityfocus.com/archive/1/437277 http://www.securityfocus.com/archive/1/437145 BID 18439 APPLE http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html

Return to the previous page.