Signature Detail

DB: Oracle MySQL Server XPath Denial Of Service

This signature detects attempts to exploit a known vulnerability against Oracle MySQL Server. A successful attack can result in a denial-of-service condition.

Extended Description

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to XML.

Affected Products

• Oracle mysql 5.5.0
• Oracle mysql 5.5.1
• Oracle mysql 5.5.10
• Oracle mysql 5.5.11
• Oracle mysql 5.5.12
• Oracle mysql 5.5.13
• Oracle mysql 5.5.14
• Oracle mysql 5.5.15
• Oracle mysql 5.5.16
• Oracle mysql 5.5.17
• Oracle mysql 5.5.18
• Oracle mysql 5.5.19
• Oracle mysql 5.5.2
• Oracle mysql 5.5.20
• Oracle mysql 5.5.21
• Oracle mysql 5.5.22
• Oracle mysql 5.5.23
• Oracle mysql 5.5.24
• Oracle mysql 5.5.25
• Oracle mysql 5.5.26
• Oracle mysql 5.5.27
• Oracle mysql 5.5.28
• Oracle mysql 5.5.29
• Oracle mysql 5.5.3
• Oracle mysql 5.5.30
• Oracle mysql 5.5.31
• Oracle mysql 5.5.32
• Oracle mysql 5.5.33
• Oracle mysql 5.5.34
• Oracle mysql 5.5.35
• Oracle mysql 5.5.4
• Oracle mysql 5.5.5
• Oracle mysql 5.5.6
• Oracle mysql 5.5.7
• Oracle mysql 5.5.9
• Oracle mysql 5.6.0
• Oracle mysql 5.6.1
• Oracle mysql 5.6.10
• Oracle mysql 5.6.11
• Oracle mysql 5.6.12
• Oracle mysql 5.6.13
• Oracle mysql 5.6.14
• Oracle mysql 5.6.15
• Oracle mysql 5.6.2
• Oracle mysql 5.6.3
• Oracle mysql 5.6.4
• Oracle mysql 5.6.5
• Oracle mysql 5.6.6
• Oracle mysql 5.6.7
• Oracle mysql 5.6.8
• Oracle mysql 5.6.9

References

• BugTraq: 66835
• CVE: CVE-2014-0384