Mysql Server · Mysql Server · CVE-2003-0780
Name of the Vulnerable Software and Affected Versions:
MySQL versions 3.23.x and earlier, 4.0.14 and earlier
Description:
A buffer overflow issue exists in the get salt from password function from sql acl.cc, allowing attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.
Recommendations:
For MySQL versions 3.23.x and earlier, and 4.0.14 and earlier, update to a version that contains a fix for this issue to prevent exploitation.