Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0627

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0627
Last Modified 07 Mar 2011 09:16:05
Published 06 Dec 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0627

Summary

The check_scramble_323 function in MySQL 4.1.x before 4.1.3, and 5.0, allows remote attackers to bypass authentication via a zero-length scrambled string.

Vulnerable Systems

Application

  • Mysql 4.1

  • Mysql 5.0


References

CERT-VN - VU#184030

BUGTRAQ - 20040705 MySQL Authentication Bypass


Last Updated: 27 May 2016 10:38:41