MySQL <=5.0.75 sql_parse.cc exploit

No description provided by source. include stdlib.h include stdio.h define USEOLDFUNCTIONS include mysql/mysql.h define NullS char 0 int main int argc, char argv MYSQL mysql = NULL; mysql = mysqlinit mysql; if !mysql puts "Init faild, out of memory?"; return EXITFAILURE; if !mysqlrealconnect mysq...

MySQL sql_parse.cc远程格式串漏洞

BUGTRAQ ID: 35609 MySQL是一款使用非常广泛的开放源代码关系数据库系统，拥有各种平台的运行版本。 MySQL的sqlparse.cc文件中的dispatchcommand函数存在格式串错误： 2084行： case COMCREATEDB: // QQ: To be removed char db=thd-strduppacket, alias; HACREATEINFO createinfo; statisticincrementthd-statusvar.comstatSQLCOMCREATEDB, &LOCKstatus; // null test to...

CVE-2006-1517

CVE-2006-1517 refers to a MySQL COM_TABLE_DUMP handling bug where an incorrect packet length exposes portions of memory in an error message, enabling remote memory disclosure. Affected MySQL branches include 4.0.x (up to 4.0.26), 4.1.x (up to 4.1.18), and 5.0.x (up to 5.0.20). The issue stems fro...