Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0684

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2005-0684
Last Modified 07 Mar 2011 09:20:26
Published 25 Apr 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0684

Summary

Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c.

Vulnerable Systems

Application

  • Mysql Maxdb 7.5.00

  • Mysql Maxdb 7.5.00.08

  • Mysql Maxdb 7.5.00.11

  • Mysql Maxdb 7.5.00.12

  • Mysql Maxdb 7.5.00.14

  • Mysql Maxdb 7.5.00.15

  • Mysql Maxdb 7.5.00.16

  • Mysql Maxdb 7.5.00.18

  • Mysql Maxdb 7.5.00.19

  • Mysql Maxdb 7.5.00.23


References

IDEFENSE - 20050425 MySQL MaxDB Webtool Remote Lock-Token Stack Overflow Vulnerability

IDEFENSE - 20050425 MySQL MaxDB Webtool Remote Stack Overflow Vulnerability

CONFIRM - http://dev.mysql.com/doc/maxdb/changes/changes_7.5.00.26.html#WebDAV

BID - 13368


Last Updated: 27 May 2016 10:39:54