Lucene search

[email protected]CVE-2000-0981

HistoryDec 19, 2000 - 5:00 a.m.

CVE-2000-0981

2000-12-1905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0981

mysql

database

weak authentication

remote attack

password recovery

6.7 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

55.3%

JSON

MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password.

CPENameOperatorVersion
oracle:mysqloracle mysqleq3.20
oracle:mysqloracle mysqleq3.21
oracle:mysqloracle mysqleq3.22
oracle:mysqloracle mysqleq3.23

CPE	Name	Operator	Version
oracle:mysql	oracle mysql	eq	3.20
oracle:mysql	oracle mysql	eq	3.21
oracle:mysql	oracle mysql	eq	3.22
oracle:mysql	oracle mysql	eq	3.23

References

archives.neohapsis.com/archives/bugtraq/2000-10/0318.html

www.mysql.com/documentation/mysql/commented/manual.php?section=Security

exchange.xforce.ibmcloud.com/vulnerabilities/5409

6.7 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

55.3%

JSON

Related for CVE-2000-0981

nessus1