CVE-2010-3840: CVE-2010-3840

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-3840

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Gis_line_string::init_from_wkb function in sql/spatial.cc in MySQL 5.1 before 5.1.51 allows remote authenticated users to cause a denial of service (server crash) by calling the PolyFromWKB function with Well-Known Binary (WKB) data containing a crafted number of (1) line strings or (2) line points.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

MySQL sql/spatial.cc文件Gis_line_string::init_from_wkb函数拒绝服务漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Oracle MySQL是美国甲骨文（Oracle）公司的一套开源的关系数据库管理系统。该数据库系统具有性能高、成本低、可靠性好等特点。 MySQL 5.0.92之前的5.0版本，5.1.51之前的5.1版本，以及5.5.6之前的5.5版本中的sql/spatial.cc文件中的Gis_line_string::init_from_wkb函数中存在漏洞。远程认证用户可以通过调带有特制数量的（1）行字符串或者（2）行指针的WKB数据的PolyFromWKB函数导致拒绝服务（服务器崩溃）。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-3840

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-3840

Please Login to view more intelligence information

https://bugzilla.redhat.com/show_bug.cgi?id=640865x_refsource_CONFIRM
http://lists.mysql.com/commits/117094x_refsource_MISC
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-51.htmlx_refsource_CONFIRM
http://bugs.mysql.com/bug.php?id=51875x_refsource_CONFIRM
http://www.securityfocus.com/bid/43676vdb-entryx_refsource_BID
http://secunia.com/advisories/42936third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/42875third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2011/dsa-2143vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/USN-1397-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-1017-1vendor-advisoryx_refsource_UBUNTU
http://www.turbolinux.co.jp/security/2011/TLSA-2011-3j.txtvendor-advisoryx_refsource_TURBO
http://www.vupen.com/english/advisories/2011/0170vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2011/0105vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2011/0345vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDVSA-2010:222vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2010-0825.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2010-0824.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2011-0164.htmlvendor-advisoryx_refsource_REDHAT
https://exchange.xforce.ibmcloud.com/vulnerabilities/64838vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2010-3840

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-3840

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2010-3840

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-3840

III. Intelligence Information for CVE-2010-3840

IV. Related Vulnerabilities

V. Comments for CVE-2010-3840

Leave a comment