Unrated severityNVD Advisory· Published Dec 31, 2006· Updated Apr 23, 2026

CVE-2006-7232

Description

sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows remote authenticated users to cause a denial of service (crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table, as originally demonstrated using ORDER BY.

Affected products

MySQL/MySQL
cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*
Range: >=5.0,<5.0.32
Canonical/Ubuntu Linux4 versions
cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.mysql.com/bug.phpnvdPatchVendor Advisory
dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-32.htmlnvdVendor Advisory
dev.mysql.com/doc/refman/5.1/en/news-5-1-14.htmlnvdVendor Advisory
lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.htmlnvdThird Party Advisory
secunia.com/advisories/29443nvdThird Party Advisory
secunia.com/advisories/30351nvdThird Party Advisory
secunia.com/advisories/31687nvdThird Party Advisory
www.redhat.com/support/errata/RHSA-2008-0364.htmlnvdThird Party Advisory
www.securityfocus.com/bid/28351nvdThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/usn-588-1nvdThird Party Advisory
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11720nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000