CVE-2013-1861
MariaDB 5.1.x-5.5.x - Denial of Service via Crafted Geometry Feature
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2013-1861. PoCs published by Alyssa Milburn.
AI-analyzed exploit summary This exploit leverages a denial-of-service vulnerability in MySQL and MariaDB by executing a malformed SQL query with the 'astext' function. The query crashes the database, denying service to legitimate users.
Description
MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68, and Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote attackers to cause a denial of service (crash) via a crafted geometry feature that specifies a large number of points, which is not properly handled when processing the binary representation of this feature, related to a numeric calculation error.
Exploits (1)
This exploit leverages a denial-of-service vulnerability in MySQL and MariaDB by executing a malformed SQL query with the 'astext' function. The query crashes the database, denying service to legitimate users.