Lucene search
MitreCVE-2001-1275HistoryMay 03, 2002 - 4:00 a.m.
CVE-2001-1275
2002-05-0304:00:00
mitre
web.nvd.nist.gov
29
mysql
cve-2001-1275
password cracking
privilege escalation
nvd
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
52.4%
MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking.
Affected configurations
Node
oraclemysqlRange≤3.23.31
Related
cvelist
cvelist
CVE-2001-1275
2002-05-03 04:00:00
nvd
nvd
CVE-2001-1275
2001-01-19 05:00:00
nessus
nessus
Mandrake Linux Security Advisory : MySQL (MDKSA-2001:014-1)
2012-09-06 00:00:00
MySQL < 3.23.36 Multiple Vulnerabilities
2001-03-08 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
52.4%
Related for CVE-2001-1275