159 matches found
CVE-2011-2900
Stack-based buffer overflow in the 1 putdir function in mongoose.c in Mongoose 3.0, 2 putdir function in yasslEWS.c in yaSSL Embedded Web Server yasslEWS 0.2, and 3 shttpdputdir function in iodir.c in Simple HTTPD shttpd 1.42 allows remote attackers to execute arbitrary code via an HTTP PUT...
VulnCheck KEV: CVE-2011-2900
Stack-based buffer overflow in the 1 putdir function in mongoose.c in Mongoose 3.0, 2 putdir function in yasslEWS.c in yaSSL Embedded Web Server yasslEWS 0.2, and 3 shttpdputdir function in iodir.c in Simple HTTPD shttpd 1.42 allows remote attackers to execute arbitrary code via...
MySQL yaSSL (Linux) - SSL Hello Message Buffer Overflow (Metasploit)
$Id: mysqlyasslhello.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
MySQL yaSSL (Windows) - SSL Hello Message Buffer Overflow (Metasploit)
$Id: mysqlyasslhello.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
MySQL - yaSSL CertDecoder::GetName Buffer Overflow (Metasploit)
$Id: mysqlyasslgetname.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
mysql: client SSL certificate verification flaw
The vioverifycallback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificat...
MySQL yaSSL CertDecoder::GetName Buffer Overflow
$Id: mysqlyasslgetname.rb 8287 2010-01-28 07:34:47Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
MySQL yaSSL CertDecoder::GetName Buffer Overflow
This module exploits a stack buffer overflow in the yaSSL 1.9.8 and earlier implementation bundled with MySQL. By sending a specially crafted client certificate, an attacker can execute arbitrary code. This vulnerability is present within the CertDecoder::GetName function inside...
MySQL yaSSL SSL Hello Message Buffer Overflow
This module exploits a stack buffer overflow in the yaSSL 1.7.5 and earlier implementation bundled with MySQL 'MySQL yaSSL SSL Hello Message Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in the yaSSL 1.7.5 and earlier implementation bundled with MySQL 'MC' ,...
MySQL yaSSL库证书解析栈溢出漏洞
BUGTRAQ ID: 37943 MySQL是一款使用非常广泛的开放源代码关系数据库系统,拥有各种平台的运行版本。 MySQL所捆绑的yaSSL库在解析畸形证书时存在栈溢出漏洞,如果数据库在编译时加入了对SSL的支持并且配置打开了SSL功能,远程攻击者可能利用此漏洞通过提交畸形的证书内容触发这个溢出,从而在服务器上执行任意指令。 MySQL AB MySQL 5.5-ms2 MySQL AB MySQL 5.1.x MySQL AB MySQL 5.0.x 厂商补丁: MySQL AB --------...
MySQL yaSSL SSL Hello Message Buffer Overflow
This module exploits a stack buffer overflow in the yaSSL 1.7.5 and earlier implementation bundled with MySQL 'MySQL yaSSL SSL Hello Message Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in the yaSSL 1.7.5 and earlier implementation bundled with MySQL 'MC' ,...
Stack overflow
Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9, as used in mysqld in MySQL 5.0.x before 5.0.90, MySQL 5.1.x before 5.1.43, MySQL 5.5.x through 5.5.0-m2, and other products, allow remote attackers to execute arbitrary cod...
CVE-2009-4484
The CVE-2009-4484 issue affects yaSSL’s CertDecoder::GetName in taocrypt/src/asn.cpp (yaSSL before 1.9.9), which MySQL bundles and uses for SSL handshakes. A crafted X.509 client certificate name can trigger multiple stack-based buffer overflows, enabling remote code execution or memory corruptio...
PT-2009-6604 · Mysql Server +2 · Mysql Server +2
Name of the Vulnerable Software and Affected Versions: yaSSL versions prior to 1.9.9 MySQL versions prior to 5.0.90 MySQL versions prior to 5.1.43 MySQL versions 5.5.x through 5.5.0-m2 Description: The issue allows remote attackers to execute arbitrary code or cause a denial of service by...
CVE-2009-4484
Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9, as used in mysqld in MySQL 5.0.x before 5.0.90, MySQL 5.1.x before 5.1.43, MySQL 5.5.x through 5.5.0-m2, and other products, allow remote attackers to execute arbitrary cod...
MySQL OpenSSL客户端绕过yaSSL服务器证书验证漏洞
BUGTRAQ ID: 37076 CVE ID: CVE-2009-4028 MySQL是一款使用非常广泛的开放源代码关系数据库系统,拥有各种平台的运行版本。 在使用OpenSSL的时候,MySQL的viosslfactories.c文件中的vioverifycallback函数可以接受深度为0的X.509证书: vioverifycallback at viosslfactories.c: / Approve cert if depth is greater then "verifydepth", currently verifydepth is always 0 and there...
Design/Logic Flaw
The vioverifycallback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificat...
CVE-2009-4028
The vioverifycallback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificat...
CVE-2009-4028
The vioverifycallback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificat...
Oracle MySQL < 5.1.41 Multiple Vulnerabilities
Binary data 5240.prm...