MySQL :: MySQL empty bit string-literal DoS vulnerability

Contact MySQL |
Login | Register

The world's most popular open source database

Documentation Downloads MySQL.com

Developer Zone

Section Menu:

New Topic

MySQL empty bit string-literal DoS vulnerability

Posted by: Jaga Arikela
Date: September 17, 2008 02:40AM

There had been a vulnerability in MySQL version prior to 5.0.66 versions where in remote attackers can cause the server to crash by sending a SQL statement as below to the MySQL server :

select b'';

I am running MySQL server version 5.0.25 and am trying to reproduce this bug on my
Windows XP machine. The server had not been crashing. Can anyone help me in resolving this.

Thanks in advance,

Jagadeesh.A

Navigate: Previous Message• Next Message

Options: Reply• Quote

Subject

Views

Written By

Posted

MySQL empty bit string-literal DoS vulnerability

4897

Jaga Arikela

September 17, 2008 02:40AM

Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.