CVE-2002-1375

Published: Sep 1, 2004

Modified: Aug 8, 2024

PUBLISHED

Description

The COM_CHANGE_USER command in MySQL 3.x before 3.23.54, and 4.x to 4.0.6, allows remote attackers to execute arbitrary code via a long response.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20021212 Advisory 04/2002: Multiple MySQL vulnerabilities

mailing-list

x_refsource_BUGTRAQ

20021216 [OpenPKG-SA-2002.013] OpenPKG Security Advisory (mysql)

mailing-list

x_refsource_BUGTRAQ

CLSA-2002:555

vendor-advisory

x_refsource_CONECTIVA

ESA-20021213-033

vendor-advisory

x_refsource_ENGARDE

http://security.e-matters.de/advisories/042002.html

x_refsource_MISC

DSA-212

vendor-advisory

x_refsource_DEBIAN

RHSA-2002:288

vendor-advisory

x_refsource_REDHAT

mysql-comchangeuser-password-bo(10848)

vdb-entry

x_refsource_XF

MDKSA-2002:087

vendor-advisory

x_refsource_MANDRAKE

RHSA-2003:166

vendor-advisory

x_refsource_REDHAT

GLSA-200212-2

vendor-advisory

x_refsource_GENTOO

SUSE-SA:2003:003

vendor-advisory

x_refsource_SUSE

6375

vdb-entry

x_refsource_BID

RHSA-2002:289

vendor-advisory

x_refsource_REDHAT

2002-0086

vendor-advisory

x_refsource_TRUSTIX

IMNX-2003-7+-008-01

vendor-advisory

x_refsource_IMMUNIX

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2002-1375

Description

Affected Products

References