Lucene search

PRIOn knowledge basePRION:CVE-2006-1517

HistoryMay 05, 2006 - 12:46 p.m.

Design/Logic Flaw

2006-05-0512:46:00

PRIOn knowledge base

www.prio-n.com

5.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.314 Low

EPSS

Percentile

96.9%

JSON

sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error message.

CPENameOperatorVersion
mysqleq5.0.5
mysqleq5.0.10
mysqleq5.0.15
mysqleq5.0.17
mysqleq4.1.13
mysqleq5.0.3
mysqleq4.1.15
mysqleq4.1.8
mysqleq4.1.14
mysqleq4.1.12

Name	Operator	Version
mysql	eq	5.0.5
mysql	eq	5.0.10
mysql	eq	5.0.15
mysql	eq	5.0.17
mysql	eq	4.1.13
mysql	eq	5.0.3
mysql	eq	4.1.15
mysql	eq	4.1.8
mysql	eq	4.1.14
mysql	eq	4.1.12

Rows per page:

1-10 of 711

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=365939

dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html

docs.info.apple.com/article.html?artnum=305214

lists.apple.com/archives/security-announce/2007/Mar/msg00002.html

lists.suse.com/archive/suse-security-announce/2006-Jun/0011.html

secunia.com/advisories/19929

secunia.com/advisories/20002

secunia.com/advisories/20073

secunia.com/advisories/20076

secunia.com/advisories/20223

secunia.com/advisories/20241

secunia.com/advisories/20253

secunia.com/advisories/20333

secunia.com/advisories/20424

secunia.com/advisories/20457

secunia.com/advisories/20625

secunia.com/advisories/20762

secunia.com/advisories/24479

secunia.com/advisories/29847

securityreason.com/securityalert/839

securitytracker.com/id?1016016

slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.599377

sunsolve.sun.com/search/document.do?assetkey=1-26-236703-1

www.debian.org/security/2006/dsa-1071

www.debian.org/security/2006/dsa-1073

www.debian.org/security/2006/dsa-1079

www.gentoo.org/security/en/glsa/glsa-200605-13.xml

www.mandriva.com/security/advisories?name=MDKSA-2006:084

www.novell.com/linux/security/advisories/2006-06-02.html

www.osvdb.org/25228

www.redhat.com/support/errata/RHSA-2006-0544.html

www.securityfocus.com/archive/1/432734/100/0/threaded

www.securityfocus.com/archive/1/434164/100/0/threaded

www.securityfocus.com/bid/17780

www.trustix.org/errata/2006/0028

www.us-cert.gov/cas/techalerts/TA07-072A.html

www.vupen.com/english/advisories/2006/1633

www.vupen.com/english/advisories/2007/0930

www.vupen.com/english/advisories/2008/1326/references

www.wisec.it/vulns.php?page=8

exchange.xforce.ibmcloud.com/vulnerabilities/26228

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11036

usn.ubuntu.com/283-1/

5.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.314 Low

EPSS

Percentile

96.9%

JSON

Related for PRION:CVE-2006-1517