Multiple memory leaks in the MQL parser in Emdros before 1.1.22 allow remote attackers to cause a denial of service (memory consumption) via malformed MQL statements.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Emdros_database_engine | Ulrik_petersen | 1.1.14 (including) | 1.1.14 (including) |
| Emdros_database_engine | Ulrik_petersen | 1.1.15 (including) | 1.1.15 (including) |
| Emdros_database_engine | Ulrik_petersen | 1.1.16 (including) | 1.1.16 (including) |
| Emdros_database_engine | Ulrik_petersen | 1.1.17 (including) | 1.1.17 (including) |
| Emdros_database_engine | Ulrik_petersen | 1.1.18 (including) | 1.1.18 (including) |
| Emdros_database_engine | Ulrik_petersen | 1.1.19 (including) | 1.1.19 (including) |
| Emdros_database_engine | Ulrik_petersen | 1.1.20 (including) | 1.1.20 (including) |
| Emdros_database_engine | Ulrik_petersen | 1.1.21 (including) | 1.1.21 (including) |
References
- http://sourceforge.net/project/shownotes.php?release_id=303465
- http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1116935\u0026group_id=37219\u0026atid=419458
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19273
- http://sourceforge.net/project/shownotes.php?release_id=303465
- http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1116935\u0026group_id=37219\u0026atid=419458
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19273