Oracle

Mysql

1431 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.72%
  • Veröffentlicht 10.01.2005 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:44

MySQL before 4.0.20 allows remote attackers to cause a denial of service (application crash) via a MATCH AGAINST query with an opening double quote but no closing double quote.

Exploit
  • EPSS 5.57%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:09:06

Buffer overflow in the prepared statements API in libmysqlclient for MySQL 4.1.3 beta and 4.1.4 allows remote attackers to cause a denial of service via a large number of placeholders.

Exploit
  • EPSS 22.35%
  • Veröffentlicht 03.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:29

MySQL 3.x before 3.23.59, 4.x before 4.0.19, 4.1.x before 4.1.2, and 5.x before 5.0.1, checks the CREATE/INSERT rights of the original table instead of the target table in an ALTER TABLE RENAME operation, which could allow attackers to conduct unauth...

Exploit
  • EPSS 9.8%
  • Veröffentlicht 03.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:29

Buffer overflow in the mysql_real_connect function in MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length...

Exploit
  • EPSS 4.9%
  • Veröffentlicht 03.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:29

MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service (crash or hang) via multiple threads that simultaneously alter MERGE table UNIONs.

  • EPSS 0.52%
  • Veröffentlicht 28.09.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:40

The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows local users to overwrite arbitrary files via a symlink attack on temporary files.

  • EPSS 0.56%
  • Veröffentlicht 01.06.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:32

The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack.

  • EPSS 0.6%
  • Veröffentlicht 04.05.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:31

mysqlbug in MySQL allows local users to overwrite arbitrary files via a symlink attack on the failed-mysql-bugreport temporary file.

Exploit
  • EPSS 3.28%
  • Veröffentlicht 31.12.2003 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:03:56

Stack-based buffer overflow in the mysql_real_connect function in the MySql client library (libmysqlclient) 4.0.13 and earlier allows local users to execute arbitrary code via a long socket name, a different vulnerability than CVE-2001-1453.

Exploit
  • EPSS 2.67%
  • Veröffentlicht 31.12.2003 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:04:30

MySQL 3.20 through 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for attackers to decrypt the password via brute force methods.