Signature Detail

DB: MySQL UpdateXML

This signature detects attempts to exploit a known vulnerability against MySQL. A successful attack can result in a denial-of-service condition.

Extended Description

MySQL is prone to a remote denial-of-service vulnerability because it fails to handle certain XPath expressions. An attacker can exploit this issue to crash the application, denying access to legitimate users. This issue affects: MySQL 5.1.31 and earlier MySQL 6.0.9 and earlier

Affected Products

• MySQL AB MySQL 5.1.10
• MySQL AB MySQL 5.1.11
• MySQL AB MySQL 5.1.12
• MySQL AB MySQL 5.1.13
• MySQL AB MySQL 5.1.14
• MySQL AB MySQL 5.1.15
• MySQL AB MySQL 5.1.16
• MySQL AB MySQL 5.1.17
• MySQL AB MySQL 5.1.18
• MySQL AB MySQL 5.1.22
• MySQL AB MySQL 5.1.23
• MySQL AB MySQL 5.1.26
• MySQL AB MySQL 5.1.30
• MySQL AB MySQL 5.1.31
• MySQL AB MySQL 5.1.5
• MySQL AB MySQL 5.1.6
• MySQL AB MySQL 5.1.9
• MySQL AB MySQL 6.0.0
• MySQL AB MySQL 6.0.1
• MySQL AB MySQL 6.0.2
• MySQL AB MySQL 6.0.3
• MySQL AB MySQL 6.0.4
• MySQL AB MySQL 6.0.6
• MySQL AB MySQL 6.0.7
• MySQL AB MySQL 6.0.8
• MySQL AB MySQL 6.0.9

References

• BugTraq: 33972
• CVE: CVE-2009-0819