Back to search
CVE-2005-0684
Published: Apr 26, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20050425 MySQL MaxDB Webtool Remote Stack Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
13368
vdb-entry
x_refsource_BID
http://dev.mysql.com/doc/maxdb/changes/changes_7.5.00.26.html#WebDAV
x_refsource_CONFIRM
20050425 MySQL MaxDB Webtool Remote Lock-Token Stack Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now