PT-2002-2290 · Oracle · Mysql Server
Publicado
2002-12-23
·
Atualizado
2019-10-07
·
CVE-2002-1375
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
MySQL versions 3.x through 3.23.53
MySQL versions 4.0.0 through 4.0.6
Description
The issue allows remote attackers to execute arbitrary code via a long response to the COM CHANGE USER command.
Recommendations
For MySQL versions 3.x through 3.23.53, update to version 3.23.54 or later.
For MySQL versions 4.0.0 through 4.0.6, update to a version later than 4.0.6.
Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Mysql Server