Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mysql | Mysql | 4.1.0 | 4.1.0 |
Mysql | Oracle | 3.23 | 3.23 |
Mysql | Oracle | 3.23.2 | 3.23.2 |
Mysql | Oracle | 3.23.3 | 3.23.3 |
Mysql | Oracle | 3.23.4 | 3.23.4 |
Mysql | Oracle | 3.23.5 | 3.23.5 |
Mysql | Oracle | 3.23.8 | 3.23.8 |
Mysql | Oracle | 3.23.9 | 3.23.9 |
Mysql | Oracle | 3.23.10 | 3.23.10 |
Mysql | Oracle | 3.23.22 | 3.23.22 |
Mysql | Oracle | 3.23.23 | 3.23.23 |
Mysql | Oracle | 3.23.24 | 3.23.24 |
Mysql | Oracle | 3.23.25 | 3.23.25 |
Mysql | Oracle | 3.23.26 | 3.23.26 |
Mysql | Oracle | 3.23.27 | 3.23.27 |
Mysql | Oracle | 3.23.28 | 3.23.28 |
Mysql | Oracle | 3.23.28 | 3.23.28 |
Mysql | Oracle | 3.23.29 | 3.23.29 |
Mysql | Oracle | 3.23.30 | 3.23.30 |
Mysql | Oracle | 3.23.31 | 3.23.31 |
Mysql | Oracle | 3.23.32 | 3.23.32 |
Mysql | Oracle | 3.23.33 | 3.23.33 |
Mysql | Oracle | 3.23.34 | 3.23.34 |
Mysql | Oracle | 3.23.36 | 3.23.36 |
Mysql | Oracle | 3.23.37 | 3.23.37 |
Mysql | Oracle | 3.23.38 | 3.23.38 |
Mysql | Oracle | 3.23.39 | 3.23.39 |
Mysql | Oracle | 3.23.40 | 3.23.40 |
Mysql | Oracle | 3.23.41 | 3.23.41 |
Mysql | Oracle | 3.23.42 | 3.23.42 |
Mysql | Oracle | 3.23.43 | 3.23.43 |
Mysql | Oracle | 3.23.44 | 3.23.44 |
Mysql | Oracle | 3.23.45 | 3.23.45 |
Mysql | Oracle | 3.23.46 | 3.23.46 |
Mysql | Oracle | 3.23.47 | 3.23.47 |
Mysql | Oracle | 3.23.48 | 3.23.48 |
Mysql | Oracle | 3.23.49 | 3.23.49 |
Mysql | Oracle | 3.23.50 | 3.23.50 |
Mysql | Oracle | 3.23.51 | 3.23.51 |
Mysql | Oracle | 3.23.52 | 3.23.52 |
Mysql | Oracle | 3.23.53 | 3.23.53 |
Mysql | Oracle | 3.23.53a | 3.23.53a |
Mysql | Oracle | 3.23.54 | 3.23.54 |
Mysql | Oracle | 3.23.54a | 3.23.54a |
Mysql | Oracle | 3.23.55 | 3.23.55 |
Mysql | Oracle | 3.23.56 | 3.23.56 |
Mysql | Oracle | 4.0.0 | 4.0.0 |
Mysql | Oracle | 4.0.1 | 4.0.1 |
Mysql | Oracle | 4.0.2 | 4.0.2 |
Mysql | Oracle | 4.0.3 | 4.0.3 |
Mysql | Oracle | 4.0.4 | 4.0.4 |
Mysql | Oracle | 4.0.5 | 4.0.5 |
Mysql | Oracle | 4.0.5a | 4.0.5a |
Mysql | Oracle | 4.0.6 | 4.0.6 |
Mysql | Oracle | 4.0.7 | 4.0.7 |
Mysql | Oracle | 4.0.7 | 4.0.7 |
Mysql | Oracle | 4.0.8 | 4.0.8 |
Mysql | Oracle | 4.0.8 | 4.0.8 |
Mysql | Oracle | 4.0.9 | 4.0.9 |
Mysql | Oracle | 4.0.9 | 4.0.9 |
Mysql | Oracle | 4.0.10 | 4.0.10 |
Mysql | Oracle | 4.0.11 | 4.0.11 |
Mysql | Oracle | 4.0.11 | 4.0.11 |
Mysql | Oracle | 4.0.12 | 4.0.12 |
Mysql | Oracle | 4.0.13 | 4.0.13 |
Mysql | Oracle | 4.0.14 | 4.0.14 |
Mysql | Oracle | 4.1.0 | 4.1.0 |
Linux | Conectiva | 7.0 | 7.0 |
Linux | Conectiva | 8.0 | 8.0 |
Linux | Conectiva | 9.0 | 9.0 |