Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2149

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-2149
Last Modified 05 Sep 2008 04:43:20
Published 31 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-2149

Summary

Buffer overflow in the prepared statements API in libmysqlclient for MySQL 4.1.3 beta and 4.1.4 allows remote attackers to cause a denial of service via a large number of placeholders.

Vulnerable Systems

Application

  • Mysql 4.1.3

  • Mysql 4.1.4


References

BID - 11261

SECTRACK - 1011408

XF - mysql-libmysqlclient-insert-bo(17493)

OSVDB - 10244

CONFIRM - http://dev.mysql.com/doc/mysql/en/news-4-1-5.html

CONFIRM - http://bugs.mysql.com/bug.php?id=5194


Last Updated: 27 May 2016 10:39:22