CVE-2007-6304

The federated engine in MySQL 5.0.x before 5.0.51a, 5.1.x before 5.1.23, and 6.0.x before 6.0.4, when performing a certain SHOW TABLE STATUS query, allows remote MySQL servers to cause a denial of service (federated handler crash and daemon crash) via a response that lacks the minimum required number of columns.

🔗 References (52)

• cve@mitrehttp://bugs.mysql.com/bug.php?id=29801
• cve@mitrehttp://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.html
• cve@mitrehttp://dev.mysql.com/doc/refman/5.1/en/news-5-1-23.html
• cve@mitrehttp://dev.mysql.com/doc/refman/6.0/en/news-6-0-4.html
• cve@mitrehttp://lists.mysql.com/announce/502
• cve@mitrehttp://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
• cve@mitrehttp://osvdb.org/42609
• cve@mitrehttp://secunia.com/advisories/28063
• cve@mitrehttp://secunia.com/advisories/28128
• cve@mitrehttp://secunia.com/advisories/28343
• cve@mitrehttp://secunia.com/advisories/28637
• cve@mitrehttp://secunia.com/advisories/28739
• cve@mitrehttp://secunia.com/advisories/28838
• cve@mitrehttp://secunia.com/advisories/29706
• cve@mitrehttp://security.gentoo.org/glsa/glsa-200804-04.xml