CVE Vulnerabilities

CVE-2003-0780

Published: Sep 22, 2003 | Modified: Dec 17, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9 HIGH
AV:N/AC:L/Au:S/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.

Affected Software

Name Vendor Start Version End Version
Mysql Mysql 4.1.0 4.1.0
Mysql Oracle 3.23 3.23
Mysql Oracle 3.23.2 3.23.2
Mysql Oracle 3.23.3 3.23.3
Mysql Oracle 3.23.4 3.23.4
Mysql Oracle 3.23.5 3.23.5
Mysql Oracle 3.23.8 3.23.8
Mysql Oracle 3.23.9 3.23.9
Mysql Oracle 3.23.10 3.23.10
Mysql Oracle 3.23.22 3.23.22
Mysql Oracle 3.23.23 3.23.23
Mysql Oracle 3.23.24 3.23.24
Mysql Oracle 3.23.25 3.23.25
Mysql Oracle 3.23.26 3.23.26
Mysql Oracle 3.23.27 3.23.27
Mysql Oracle 3.23.28 3.23.28
Mysql Oracle 3.23.28 3.23.28
Mysql Oracle 3.23.29 3.23.29
Mysql Oracle 3.23.30 3.23.30
Mysql Oracle 3.23.31 3.23.31
Mysql Oracle 3.23.32 3.23.32
Mysql Oracle 3.23.33 3.23.33
Mysql Oracle 3.23.34 3.23.34
Mysql Oracle 3.23.36 3.23.36
Mysql Oracle 3.23.37 3.23.37
Mysql Oracle 3.23.38 3.23.38
Mysql Oracle 3.23.39 3.23.39
Mysql Oracle 3.23.40 3.23.40
Mysql Oracle 3.23.41 3.23.41
Mysql Oracle 3.23.42 3.23.42
Mysql Oracle 3.23.43 3.23.43
Mysql Oracle 3.23.44 3.23.44
Mysql Oracle 3.23.45 3.23.45
Mysql Oracle 3.23.46 3.23.46
Mysql Oracle 3.23.47 3.23.47
Mysql Oracle 3.23.48 3.23.48
Mysql Oracle 3.23.49 3.23.49
Mysql Oracle 3.23.50 3.23.50
Mysql Oracle 3.23.51 3.23.51
Mysql Oracle 3.23.52 3.23.52
Mysql Oracle 3.23.53 3.23.53
Mysql Oracle 3.23.53a 3.23.53a
Mysql Oracle 3.23.54 3.23.54
Mysql Oracle 3.23.54a 3.23.54a
Mysql Oracle 3.23.55 3.23.55
Mysql Oracle 3.23.56 3.23.56
Mysql Oracle 4.0.0 4.0.0
Mysql Oracle 4.0.1 4.0.1
Mysql Oracle 4.0.2 4.0.2
Mysql Oracle 4.0.3 4.0.3
Mysql Oracle 4.0.4 4.0.4
Mysql Oracle 4.0.5 4.0.5
Mysql Oracle 4.0.5a 4.0.5a
Mysql Oracle 4.0.6 4.0.6
Mysql Oracle 4.0.7 4.0.7
Mysql Oracle 4.0.7 4.0.7
Mysql Oracle 4.0.8 4.0.8
Mysql Oracle 4.0.8 4.0.8
Mysql Oracle 4.0.9 4.0.9
Mysql Oracle 4.0.9 4.0.9
Mysql Oracle 4.0.10 4.0.10
Mysql Oracle 4.0.11 4.0.11
Mysql Oracle 4.0.11 4.0.11
Mysql Oracle 4.0.12 4.0.12
Mysql Oracle 4.0.13 4.0.13
Mysql Oracle 4.0.14 4.0.14
Mysql Oracle 4.1.0 4.1.0
Linux Conectiva 7.0 7.0
Linux Conectiva 8.0 8.0
Linux Conectiva 9.0 9.0

References