Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
MySQL Improper Input Validation Vulnerability - CVE-2012-5614 - Vulnerability Database
MySQL

MySQL Improper Input Validation Vulnerability - CVE-2012-5614

Medium
Reference: CVE-2012-5614
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-5614
Title: MySQL Improper Input Validation Vulnerability
Overview:

Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier and MariaDB 5.5.28a and possibly other versions allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique nested elements.