Lucene search
SuseSUSE-SA:2003:003HistoryJan 02, 2003 - 2:34 p.m.
remote command execution in mysql
2003-01-0214:34:03
lists.opensuse.org
15
EPSS
0.129
Percentile
95.5%
Stefan Esser from e-matters reported various bugs in MySQL. Within the MySQL server the password checking and a signedness issue has been fixed. These could lead to a remote compromise of the system running an unpatched MySQL server. In order to exploit this bug, the remote attacker needs a valid MySQL account. Further, a buffer overflow in the mysqlclient library has been reported and fixed. Applications using this library (as commonly used from within PHP scripts) are vulnerable to this attack and could also be compromised by remote attackers.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 7.1 | i386 | mysql | < 3.23.33-28 | mysql-3.23.33-28.i386.rpm |
| openSUSE | 7.3 | sparc | mysql | < 3.23.44-21 | mysql-3.23.44-21.sparc.rpm |
| openSUSE | 7.2 | i386 | mysql-devel | < 3.23.37-58 | mysql-devel-3.23.37-58.i386.rpm |
| openSUSE | 7.3 | i386 | mysql-client | < 3.23.44-24 | mysql-client-3.23.44-24.i386.rpm |
| openSUSE | 7.1 | alpha | mysql | < 3.23.33-19 | mysql-3.23.33-19.alpha.rpm |
| openSUSE | 7.1 | ppc | mysql-client | < 3.23.33-20 | mysql-client-3.23.33-20.ppc.rpm |
| openSUSE | 7.3 | i386 | mysql | < 3.23.44-24 | mysql-3.23.44-24.i386.rpm |
| openSUSE | 8.0 | i386 | mysql-client | < 3.23.48-78 | mysql-client-3.23.48-78.i386.rpm |
| openSUSE | 7.1 | ppc | mysql | < 3.23.33-20 | mysql-3.23.33-20.ppc.rpm |
| openSUSE | 7.3 | ppc | mysql | < 3.23.44-29 | mysql-3.23.44-29.ppc.rpm |
Related
nessus
nessus
Debian DSA-212-1 : mysql - multiple problems
2004-09-29 00:00:00
Mandrake Linux Security Advisory : MySQL (MDKSA-2002:087)
2004-07-31 00:00:00
RHEL 2.1 : mysql (RHSA-2002:289)
2004-07-06 00:00:00
openvas
openvas
Debian Security Advisory DSA 212-1 (mysql)
2008-01-17 00:00:00
Debian Security Advisory DSA 212-1 (mysql)
2008-01-17 00:00:00
redhat
redhat
(RHSA-2002:289) mysql security update
2003-02-06 00:00:00
osv
osv
mysql - multiple problems
2002-12-17 00:00:00
debian
debian
[SECURITY] [DSA-212-1] Multiple MySQL vulnerabilities
2002-12-17 11:55:56
cvelist
cvelist
nvd
nvd
cve
cve