PT-2003-2425 · Oracle · Mysql Server

Published

2003-12-31

Updated

2019-12-17

CVE-2003-1480

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions MySQL versions 3.20 through 4.1.0

Description The issue concerns a weak algorithm used for hashed passwords, making it easier for attackers to decrypt the password via brute force methods.

Recommendations For MySQL versions 3.20 through 4.1.0, update to a version that uses a stronger password hashing algorithm to mitigate the risk of password decryption via brute force methods.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310

Related Identifiers

CVE-2003-1480

Affected Products

Mysql Server

PT-2003-2425 · Oracle · Mysql Server

CVE-2003-1480

Weakness Enumeration

Related Identifiers

Affected Products

References · 5