Denial of Service Vulnerability in DBD::mysql Perl Module

Denial of Service Vulnerability in DBD::mysql Perl Module

CVE-2016-1249 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned number of placeholders in WHERE condition and output fields in SELECT expression.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.