CVE-2006-1516

Published: May 5, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

2006-0028

vendor-advisory

x_refsource_TRUSTIX

19929

third-party-advisory

x_refsource_SECUNIA

20073

third-party-advisory

x_refsource_SECUNIA

http://bugs.debian.org/365938

x_refsource_CONFIRM

TA07-072A

third-party-advisory

x_refsource_CERT

DSA-1079

vendor-advisory

x_refsource_DEBIAN

ADV-2006-1633

vdb-entry

x_refsource_VUPEN

20060516 UPDATE: [ GLSA 200605-13 ] MySQL: Information leakage

mailing-list

x_refsource_BUGTRAQ

20424

third-party-advisory

x_refsource_SECUNIA

GLSA-200605-13

vendor-advisory

x_refsource_GENTOO

APPLE-SA-2007-03-13

vendor-advisory

x_refsource_APPLE

840

third-party-advisory

x_refsource_SREASON

http://docs.info.apple.com/article.html?artnum=305214

x_refsource_CONFIRM

SUSE-SA:2006:036

vendor-advisory

x_refsource_SUSE

SUSE-SR:2006:012

vendor-advisory

x_refsource_SUSE

17780

vdb-entry

x_refsource_BID

MDKSA-2006:084

vendor-advisory

x_refsource_MANDRIVA

http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html

x_refsource_CONFIRM

20241

third-party-advisory

x_refsource_SECUNIA

20762

third-party-advisory

x_refsource_SECUNIA

mysql-login-packet-info-disclosure(26236)

vdb-entry

x_refsource_XF

236703

vendor-advisory

x_refsource_SUNALERT

SSA:2006-155-01

vendor-advisory

x_refsource_SLACKWARE

20333

third-party-advisory

x_refsource_SECUNIA

1016017

vdb-entry

x_refsource_SECTRACK

20002

third-party-advisory

x_refsource_SECUNIA

20223

third-party-advisory

x_refsource_SECUNIA

20076

third-party-advisory

x_refsource_SECUNIA

http://www.wisec.it/vulns.php?page=7

x_refsource_MISC

DSA-1071

vendor-advisory

x_refsource_DEBIAN

ADV-2008-1326

vdb-entry

x_refsource_VUPEN

ADV-2007-0930

vdb-entry

x_refsource_VUPEN

20060502 MySQL Anonymous Login Handshake - Information Leakage.

mailing-list

x_refsource_BUGTRAQ

20253

third-party-advisory

x_refsource_SECUNIA

USN-283-1

vendor-advisory

x_refsource_UBUNTU

20457

third-party-advisory

x_refsource_SECUNIA

DSA-1073

vendor-advisory

x_refsource_DEBIAN

29847

third-party-advisory

x_refsource_SECUNIA

20625

third-party-advisory

x_refsource_SECUNIA

RHSA-2006:0544

vendor-advisory

x_refsource_REDHAT

oval:org.mitre.oval:def:9918

vdb-entry

signature

x_refsource_OVAL

24479

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-1516

Description

Affected Products

References