PT-2006-2521 · Oracle+1 · Mysql Server+1

Stefano Di Paola

Published

2006-05-05

Updated

2019-12-17

CVE-2006-1516

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: MySQL versions 4.0.x up to 4.0.26 MySQL versions 4.1.x up to 4.1.18 MySQL versions 5.0.x up to 5.0.20

Description: The issue allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read. This occurs due to the check connection function in sql parse.cc.

Recommendations: For MySQL versions 4.0.x up to 4.0.26, update to a version later than 4.0.26 to resolve the issue. For MySQL versions 4.1.x up to 4.1.18, update to a version later than 4.1.18 to resolve the issue. For MySQL versions 5.0.x up to 5.0.20, update to a version later than 5.0.20 to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-1516

DSA-1071-1

DSA-1073-1

DSA-1079-1

RHSA-2006:0544

RHSA-2006_0544

Affected Products

Mysql Server

Red Hat

PT-2006-2521 · Oracle+1 · Mysql Server+1

CVE-2006-1516

Related Identifiers

Affected Products

References · 53