Search Results (Refine Search)
- CPE Product Version: cpe:/a:oracle:mysql:5.1.34:sp1
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2010-3676 |
storage/innobase/dict/dict0crea.c in mysqld in Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (assertion failure) by modifying the (1) innodb_file_format or (2) innodb_file_per_table configuration parameters for the InnoDB storage engine, then executing a DDL statement. Published: January 11, 2011; 3:00:01 PM -0500 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
CVE-2009-4028 |
The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificate, as demonstrated by a certificate presented by a server linked against the yaSSL library. Published: November 30, 2009; 12:30:00 PM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |