Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 DB:MYSQL:IN-NULL-ARG-DOS

Severity

 Medium

Recommended

 Yes

Category

 DB

Keywords

 MySQL IN CASE NULL

Release Date

 2010/10/25

Update Number

 1798

Supported Platforms

 idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+

DB: Oracle MySQL Database IN and CASE NULL Argument Denial of Service


This signature detects attempts to exploit a known denial of service vulnerability in Oracle MySQL database server. It is due to an error while handling IN or CASE functions when NULL arguments are passed to the functions either by the WITH ROLLUP modifier or explicitly. Remote authenticated attackers can exploit this by sending malicious command packets to the server. A successful attack can cause the target server to terminate, denying service to all users until the server is restarted.

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy & Policy
Legal Notices
Copyright© 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out