Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DB:MYSQL:UPDATEXML |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
DB |
Keywords |
MySQL UpdateXML |
Release Date |
2012/04/23 |
Update Number |
2122 |
Supported Platforms |
idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DB: MySQL UpdateXML
This signature detects attempts to exploit a known vulnerability against MySQL. A successful attack can result in a denial-of-service condition.
Extended Description
MySQL is prone to a remote denial-of-service vulnerability because it fails to handle certain XPath expressions. An attacker can exploit this issue to crash the application, denying access to legitimate users. This issue affects: MySQL 5.1.31 and earlier MySQL 6.0.9 and earlier
Affected Products
- Mysql_ab mysql 5.1.10
- Mysql_ab mysql 5.1.11
- Mysql_ab mysql 5.1.12
- Mysql_ab mysql 5.1.13
- Mysql_ab mysql 5.1.14
- Mysql_ab mysql 5.1.15
- Mysql_ab mysql 5.1.16
- Mysql_ab mysql 5.1.17
- Mysql_ab mysql 5.1.18
- Mysql_ab mysql 5.1.22
- Mysql_ab mysql 5.1.23
- Mysql_ab mysql 5.1.26
- Mysql_ab mysql 5.1.30
- Mysql_ab mysql 5.1.31
- Mysql_ab mysql 5.1.5
- Mysql_ab mysql 5.1.6
- Mysql_ab mysql 5.1.9
- Mysql_ab mysql 6.0.0
- Mysql_ab mysql 6.0.1
- Mysql_ab mysql 6.0.2
- Mysql_ab mysql 6.0.3
- Mysql_ab mysql 6.0.4
- Mysql_ab mysql 6.0.6
- Mysql_ab mysql 6.0.7
- Mysql_ab mysql 6.0.8
- Mysql_ab mysql 6.0.9
References
- BugTraq: 33972
- CVE: CVE-2009-0819