Signature Detail

HTTP: MySQL Alter Database Injection in HTTP

This signature detects attempts to exploit a known vulnerability against Oracle MySQL Database. A successful attack can result in a denial-of-service condition. This issue affects versions prior to MySQL 5.1.48.

Extended Description

MySQL is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to render the database unavailable, denying access to legitimate users. This issue affects versions prior to MySQL 5.1.48.

Affected Products

• Gentoo linux
• Mandriva linux_mandrake 2009.1
• Mandriva linux_mandrake 2009.1 X86 64
• Mandriva linux_mandrake 2010.0
• Mandriva linux_mandrake 2010.0 X86 64
• Mandriva linux_mandrake 2010.1
• Mandriva linux_mandrake 2010.1 X86 64
• Mysql_ab mysql 5.0
• Mysql_ab mysql 5.0.0 .0-0
• Mysql_ab mysql 5.0.0 .0-Alpha
• Mysql_ab mysql 5.0.1
• Mysql_ab mysql 5.0.18
• Mysql_ab mysql 5.0.19
• Mysql_ab mysql 5.0.2
• Mysql_ab mysql 5.0.20
• Mysql_ab mysql 5.0.21
• Mysql_ab mysql 5.0.22
• Mysql_ab mysql 5.0.22 -1-0.1
• Mysql_ab mysql 5.0.24
• Mysql_ab mysql 5.0.26
• Mysql_ab mysql 5.0.27
• Mysql_ab mysql 5.0.3
• Mysql_ab mysql 5.0.32
• Mysql_ab mysql 5.0.33
• Mysql_ab mysql 5.0.36
• Mysql_ab mysql 5.0.37
• Mysql_ab mysql 5.0.38
• Mysql_ab mysql 5.0.39
• Mysql_ab mysql 5.0.4
• Mysql_ab mysql 5.0.40
• Mysql_ab mysql 5.0.42
• Mysql_ab mysql 5.0.44
• Mysql_ab mysql 5.0.45
• Mysql_ab mysql 5.0.46
• Mysql_ab mysql 5.0.47
• Mysql_ab mysql 5.0.48
• Mysql_ab mysql 5.0.49
• Mysql_ab mysql 5.0.50
• Mysql_ab mysql 5.0.51
• Mysql_ab mysql 5.0.51A
• Mysql_ab mysql 5.0.52
• Mysql_ab mysql 5.0.60
• Mysql_ab mysql 5.0.66
• Mysql_ab mysql 5.0.75
• Mysql_ab mysql 5.0.88
• Mysql_ab mysql 5.1.10
• Mysql_ab mysql 5.1.11
• Mysql_ab mysql 5.1.12
• Mysql_ab mysql 5.1.13
• Mysql_ab mysql 5.1.14
• Mysql_ab mysql 5.1.15
• Mysql_ab mysql 5.1.16
• Mysql_ab mysql 5.1.17
• Mysql_ab mysql 5.1.18
• Mysql_ab mysql 5.1.22
• Mysql_ab mysql 5.1.23
• Mysql_ab mysql 5.1.26
• Mysql_ab mysql 5.1.30
• Mysql_ab mysql 5.1.31
• Mysql_ab mysql 5.1.32
• Mysql_ab mysql 5.1.33
• Mysql_ab mysql 5.1.34
• Mysql_ab mysql 5.1.35
• Mysql_ab mysql 5.1.36
• Mysql_ab mysql 5.1.37
• Mysql_ab mysql 5.1.38
• Mysql_ab mysql 5.1.39
• Mysql_ab mysql 5.1.41
• Mysql_ab mysql 5.1.42
• Mysql_ab mysql 5.1.42
• Mysql_ab mysql 5.1.43
• Mysql_ab mysql 5.1.44
• Mysql_ab mysql 5.1.45
• Mysql_ab mysql 5.1.46
• Mysql_ab mysql 5.1.47
• Mysql_ab mysql 5.1.5
• Mysql_ab mysql 5.1.6
• Mysql_ab mysql 5.1.9
• Pardus linux_2009
• Red_hat fedora 12
• Red_hat fedora 13
• Ubuntu ubuntu_linux 10.04 Amd64
• Ubuntu ubuntu_linux 10.04 ARM
• Ubuntu ubuntu_linux 10.04 I386
• Ubuntu ubuntu_linux 10.04 Powerpc
• Ubuntu ubuntu_linux 10.04 Sparc
• Ubuntu ubuntu_linux 10.10 amd64
• Ubuntu ubuntu_linux 10.10 ARM
• Ubuntu ubuntu_linux 10.10 i386
• Ubuntu ubuntu_linux 10.10 powerpc
• Ubuntu ubuntu_linux 11.04 amd64
• Ubuntu ubuntu_linux 11.04 ARM
• Ubuntu ubuntu_linux 11.04 i386
• Ubuntu ubuntu_linux 11.04 powerpc
• Ubuntu ubuntu_linux 11.10 amd64
• Ubuntu ubuntu_linux 11.10 i386
• Ubuntu ubuntu_linux 6.06 LTS Amd64
• Ubuntu ubuntu_linux 6.06 LTS I386
• Ubuntu ubuntu_linux 6.06 LTS Powerpc
• Ubuntu ubuntu_linux 6.06 LTS Sparc
• Ubuntu ubuntu_linux 8.04 LTS Amd64
• Ubuntu ubuntu_linux 8.04 LTS I386
• Ubuntu ubuntu_linux 8.04 LTS Lpia
• Ubuntu ubuntu_linux 8.04 LTS Powerpc
• Ubuntu ubuntu_linux 8.04 LTS Sparc
• Ubuntu ubuntu_linux 9.10 Amd64
• Ubuntu ubuntu_linux 9.10 ARM
• Ubuntu ubuntu_linux 9.10 I386
• Ubuntu ubuntu_linux 9.10 Lpia
• Ubuntu ubuntu_linux 9.10 Powerpc
• Ubuntu ubuntu_linux 9.10 Sparc

References

• BugTraq: 41198
• CVE: CVE-2010-2008
• URL: http://bugs.mysql.com/bug.php?id=53804
• URL: http://www.mysql.com/
• URL: http://dev.mysql.com/doc/refman/5.1/en/news-5-1-48.html