Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle mysql 3.23.36 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2003-0073
Double-free vulnerability in mysqld for MySQL prior to 3.23.55 allows attackers with MySQL access to cause a denial of service (crash) via mysql_change_user.
Oracle Mysql 3.23.31
Oracle Mysql 3.23.36
Oracle Mysql 3.23.41
Oracle Mysql 3.23.47
Oracle Mysql 3.23.52
Oracle Mysql 3.23.53
Oracle Mysql 3.23.54
Oracle Mysql 3.23.54a
755
VMScore
CVE-2002-1809
The default configuration of the Windows binary release of MySQL 3.23.2 up to and including 3.23.52 has a NULL root password, which could allow remote malicious users to gain unauthorized root access to the MySQL database.
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
Oracle Mysql 3.23.30
Oracle Mysql 3.23.31
Oracle Mysql 3.23.34
Oracle Mysql 3.23.36
Oracle Mysql 3.23.37
Oracle Mysql 3.23.38
Oracle Mysql 3.23.39
Oracle Mysql 3.23.40
1 EDB exploit
668
VMScore
CVE-2002-1921
The default configuration of MySQL 3.20.32 up to and including 3.23.52, when running on Windows, does set the bind address to the loopback interface, which allows remote malicious users to connect to the database.
Oracle Mysql 3.20.32a
Oracle Mysql 3.22.26
Oracle Mysql 3.22.27
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
Oracle Mysql 3.23.30
668
VMScore
CVE-2002-1923
The default configuration in MySQL 3.20.32 up to and including 3.23.52, when running on Windows, does not have logging enabled, which could allow remote malicious users to conduct activities without detection.
Oracle Mysql 3.20.32a
Oracle Mysql 3.22.26
Oracle Mysql 3.22.27
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
Oracle Mysql 3.23.30
445
VMScore
CVE-2002-1373
Signed integer vulnerability in the COM_TABLE_DUMP package for MySQL 3.23.x prior to 3.23.54 allows remote malicious users to cause a denial of service (crash or hang) in mysqld by causing large negative integers to be provided to a memcpy call.
Oracle Mysql 3.22.26
Oracle Mysql 3.22.27
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
Oracle Mysql 3.23.30
Oracle Mysql 3.23.31
435
VMScore
CVE-2003-1480
MySQL 3.20 up to and including 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for malicious users to decrypt the password via brute force methods.
Mysql Mysql 4.1.0
Oracle Mysql 3.20
Oracle Mysql 3.20.32a
Oracle Mysql 3.21
Oracle Mysql 3.22
Oracle Mysql 3.22.26
Oracle Mysql 3.22.27
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.22
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
1 EDB exploit
910
VMScore
CVE-2003-0780
Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and previous versions, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.
Conectiva Linux 9.0
Conectiva Linux 8.0
Conectiva Linux 7.0
Mysql Mysql 4.1.0
Oracle Mysql 3.23
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.22
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
Oracle Mysql 3.23.30
Oracle Mysql 3.23.31
2 EDB exploits
187
VMScore
CVE-2004-0381
mysqlbug in MySQL allows local users to overwrite arbitrary files via a symlink attack on the failed-mysql-bugreport temporary file.
Mysql Mysql 4.1.0
Oracle Mysql 3.20.32a
Oracle Mysql 3.22.26
Oracle Mysql 3.22.27
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.22
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
1 Github repository
605
VMScore
CVE-2004-0957
Unknown vulnerability in MySQL 3.23.58 and previous versions, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct unauthorized activitie...
Openpkg Openpkg 2.1
Openpkg Openpkg Current
Openpkg Openpkg 2.2
Oracle Mysql 3.20
Oracle Mysql 3.20.32a
Oracle Mysql 3.21
Oracle Mysql 3.22
Oracle Mysql 3.22.26
Oracle Mysql 3.22.27
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
Oracle Mysql 3.23.5
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.23.10
Oracle Mysql 3.23.22
465
VMScore
CVE-2006-0903
MySQL 5.0.18 and previous versions allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function. NOTE: this issue was originally reported for the mysql_query function, but the vend...
Mysql Mysql 5.0.5
Mysql Mysql 5.0.10
Mysql Mysql 5.0.15
Mysql Mysql 5.0.17
Mysql Mysql 4.1.13
Mysql Mysql 4.1.15
Mysql Mysql 4.1.8
Mysql Mysql 4.1.14
Mysql Mysql 4.1.12
Mysql Mysql 4.1.10
Mysql Mysql 5.0.2
Mysql Mysql 5.0.1
Mysql Mysql 4.1.0
Mysql Mysql 5.0.4
Mysql Mysql 4.1.3
Mysql Mysql 5.0.16
Oracle Mysql 3.23
Oracle Mysql 3.23.0
Oracle Mysql 3.23.1
Oracle Mysql 3.23.2
Oracle Mysql 3.23.3
Oracle Mysql 3.23.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »