4.6

CVE-2005-2558

Stack-based buffer overflow in the init_syms function in MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta allows remote authenticated users who can create user-defined functions to execute arbitrary code via a long function_name field.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MysqlMysql Version4.1.0
MysqlMysql Version4.1.3
MysqlMysql Version4.1.10
MysqlMysql Version5.0.1
MysqlMysql Version5.0.2
MysqlMysql Version5.0.3
MysqlMysql Version5.0.4
OracleMysql Version4.0.0
OracleMysql Version4.0.1
OracleMysql Version4.0.2
OracleMysql Version4.0.3
OracleMysql Version4.0.4
OracleMysql Version4.0.5
OracleMysql Version4.0.5a
OracleMysql Version4.0.6
OracleMysql Version4.0.7
OracleMysql Version4.0.7 Updategamma
OracleMysql Version4.0.8
OracleMysql Version4.0.8 Updategamma
OracleMysql Version4.0.9
OracleMysql Version4.0.9 Updategamma
OracleMysql Version4.0.10
OracleMysql Version4.0.11
OracleMysql Version4.0.11 Updategamma
OracleMysql Version4.0.12
OracleMysql Version4.0.13
OracleMysql Version4.0.14
OracleMysql Version4.0.15
OracleMysql Version4.0.18
OracleMysql Version4.0.20
OracleMysql Version4.0.21
OracleMysql Version4.0.24
OracleMysql Version4.1.0 Updatealpha
OracleMysql Version4.1.2 Updatealpha
OracleMysql Version4.1.3 Updatebeta
OracleMysql Version4.1.4
OracleMysql Version4.1.5
OracleMysql Version5.0.0 Updatealpha
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.33% 0.813
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/17027
http://www.novell.com/linux/security/advisories/2005_21_sr.html
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.18.1/SCOSA-2006.18.1.txt
http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/035845.html
Patch
Vendor Advisory
http://marc.info/?l=bugtraq&m=112354450412427&w=2
http://secunia.com/advisories/20381
http://secunia.com/advisories/29847
http://sunsolve.sun.com/search/document.do?assetkey=1-26-236703-1
http://www.appsecinc.com/resources/alerts/mysql/2005-002.html
Patch
Vendor Advisory
http://www.debian.org/security/2005/dsa-829
http://www.debian.org/security/2005/dsa-831
http://www.debian.org/security/2005/dsa-833
http://www.mandriva.com/security/advisories?name=MDKSA-2005:163
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00005.html
http://www.securityfocus.com/bid/14509
Patch
http://www.vupen.com/english/advisories/2008/1326/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/21737
https://www.ubuntu.com/usn/usn-180-1/
https://www.ubuntu.com/usn/usn-180-2/