6.5

CVE-2006-1518

Buffer overflow in the open_table function in sql_base.cc in MySQL 5.0.x up to 5.0.20 might allow remote attackers to execute arbitrary code via crafted COM_TABLE_DUMP packets with invalid length values.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MysqlMysql Version5.0.1
MysqlMysql Version5.0.2
MysqlMysql Version5.0.3
MysqlMysql Version5.0.4
MysqlMysql Version5.0.5
MysqlMysql Version5.0.10
MysqlMysql Version5.0.15
MysqlMysql Version5.0.16
MysqlMysql Version5.0.17
MysqlMysql Version5.0.20
OracleMysql Version5.0.0 Updatealpha
OracleMysql Version5.0.3 Updatebeta
OracleMysql Version5.0.6
OracleMysql Version5.0.7
OracleMysql Version5.0.8
OracleMysql Version5.0.9
OracleMysql Version5.0.11
OracleMysql Version5.0.12
OracleMysql Version5.0.13
OracleMysql Version5.0.14
OracleMysql Version5.0.18
OracleMysql Version5.0.19
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 35.98% 0.983
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/20241
http://secunia.com/advisories/20253
http://secunia.com/advisories/20333
http://www.debian.org/security/2006/dsa-1071
http://www.debian.org/security/2006/dsa-1073
http://www.debian.org/security/2006/dsa-1079
http://secunia.com/advisories/20457
http://www.novell.com/linux/security/advisories/2006-06-02.html
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html
Patch
http://lists.suse.com/archive/suse-security-announce/2006-Jun/0011.html
http://secunia.com/advisories/19929
Patch
Vendor Advisory
http://secunia.com/advisories/20762
http://www.securityfocus.com/bid/17780
http://www.vupen.com/english/advisories/2006/1633
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=365939
Patch
http://securityreason.com/securityalert/839
http://securitytracker.com/id?1016016
Patch
http://www.securityfocus.com/archive/1/432734/100/0/threaded
http://www.wisec.it/vulns.php?page=8
Patch
http://www.kb.cert.org/vuls/id/602457
Patch
Third Party Advisory
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/26232