Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle mysql 3.23.52 vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2003-0150
MySQL 3.23.55 and previous versions creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart, as demonstrated by modifying my....
Oracle Mysql 3.23.53a
Oracle Mysql 3.23.54
Oracle Mysql 3.23.54a
Oracle Mysql 3.23.55
Oracle Mysql 3.23.52
Oracle Mysql 3.23.53
1 EDB exploit
5
CVSSv2
CVE-2003-0073
Double-free vulnerability in mysqld for MySQL prior to 3.23.55 allows attackers with MySQL access to cause a denial of service (crash) via mysql_change_user.
Oracle Mysql 3.23.31
Oracle Mysql 3.23.54a
Oracle Mysql 3.23.36
Oracle Mysql 3.23.41
Oracle Mysql 3.23.53
Oracle Mysql 3.23.54
Oracle Mysql 3.23.47
Oracle Mysql 3.23.52
7.5
CVSSv2
CVE-2002-1809
The default configuration of the Windows binary release of MySQL 3.23.2 up to and including 3.23.52 has a NULL root password, which could allow remote malicious users to gain unauthorized root access to the MySQL database.
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.41
Oracle Mysql 3.23.42
Oracle Mysql 3.23.43
Oracle Mysql 3.23.44
Oracle Mysql 3.23.45
Oracle Mysql 3.23.2
Oracle Mysql 3.23.29
Oracle Mysql 3.23.30
Oracle Mysql 3.23.38
Oracle Mysql 3.23.4
Oracle Mysql 3.23.46
Oracle Mysql 3.23.48
Oracle Mysql 3.23.9
Oracle Mysql 3.23.31
Oracle Mysql 3.23.34
Oracle Mysql 3.23.36
Oracle Mysql 3.23.37
Oracle Mysql 3.23.5
1 EDB exploit
7.5
CVSSv2
CVE-2002-1923
The default configuration in MySQL 3.20.32 up to and including 3.23.52, when running on Windows, does not have logging enabled, which could allow remote malicious users to conduct activities without detection.
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.40
Oracle Mysql 3.23.41
Oracle Mysql 3.22.26
Oracle Mysql 3.22.27
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.23.3
Oracle Mysql 3.23.30
Oracle Mysql 3.23.31
Oracle Mysql 3.23.34
Oracle Mysql 3.23.36
Oracle Mysql 3.23.48
Oracle Mysql 3.23.49
Oracle Mysql 3.23.5
Oracle Mysql 3.23.50
Oracle Mysql 3.23.42
Oracle Mysql 3.23.43
Oracle Mysql 3.20.32a
7.5
CVSSv2
CVE-2002-1921
The default configuration of MySQL 3.20.32 up to and including 3.23.52, when running on Windows, does set the bind address to the loopback interface, which allows remote malicious users to connect to the database.
Oracle Mysql 3.20.32a
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
Oracle Mysql 3.23.3
Oracle Mysql 3.23.45
Oracle Mysql 3.23.46
Oracle Mysql 3.23.47
Oracle Mysql 3.23.48
Oracle Mysql 3.22.32
Oracle Mysql 3.23.10
Oracle Mysql 3.23.2
Oracle Mysql 3.23.23
Oracle Mysql 3.23.37
Oracle Mysql 3.23.38
Oracle Mysql 3.23.39
Oracle Mysql 3.23.4
Oracle Mysql 3.23.52
Oracle Mysql 3.23.8
Oracle Mysql 3.23.9
Oracle Mysql 3.22.26
Oracle Mysql 3.22.28
Oracle Mysql 3.22.30
5
CVSSv2
CVE-2002-1373
Signed integer vulnerability in the COM_TABLE_DUMP package for MySQL 3.23.x prior to 3.23.54 allows remote malicious users to cause a denial of service (crash or hang) in mysqld by causing large negative integers to be provided to a memcpy call.
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.23.26
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.37
Oracle Mysql 3.23.38
Oracle Mysql 3.23.44
Oracle Mysql 3.23.45
Oracle Mysql 3.23.52
Oracle Mysql 3.23.53
Oracle Mysql 4.0.3
Oracle Mysql 4.0.5a
Oracle Mysql 3.22.32
Oracle Mysql 3.23.10
Oracle Mysql 3.23.29
Oracle Mysql 3.23.3
Oracle Mysql 3.23.39
Oracle Mysql 3.23.4
Oracle Mysql 3.23.46
Oracle Mysql 3.23.47
Oracle Mysql 3.23.53a
4.3
CVSSv2
CVE-2003-1480
MySQL 3.20 up to and including 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for malicious users to decrypt the password via brute force methods.
Oracle Mysql 3.22
Oracle Mysql 3.22.27
Oracle Mysql 3.23.10
Oracle Mysql 3.23.22
Oracle Mysql 3.23.24
Oracle Mysql 3.23.28
Oracle Mysql 3.23.3
Oracle Mysql 3.23.36
Oracle Mysql 3.23.38
Oracle Mysql 3.23.44
Oracle Mysql 3.23.46
Oracle Mysql 3.23.50
Oracle Mysql 3.23.52
Oracle Mysql 3.23.8
Oracle Mysql 4.0.0
Oracle Mysql 4.0.8
Mysql Mysql 4.1.0
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23.31
1 EDB exploit
9
CVSSv2
CVE-2003-0780
Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and previous versions, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.
Oracle Mysql 3.23.25
Oracle Mysql 3.23.26
Oracle Mysql 3.23.32
Oracle Mysql 3.23.33
Oracle Mysql 3.23.40
Oracle Mysql 3.23.41
Oracle Mysql 3.23.48
Oracle Mysql 3.23.49
Oracle Mysql 3.23.54a
Oracle Mysql 3.23.55
Oracle Mysql 4.0.11
Oracle Mysql 4.0.5
Oracle Mysql 4.0.5a
Oracle Mysql 4.0.6
Mysql Mysql 4.1.0
Oracle Mysql 3.23.2
Oracle Mysql 3.23.22
Oracle Mysql 3.23.28
Oracle Mysql 3.23.29
Oracle Mysql 3.23.3
Oracle Mysql 3.23.37
Oracle Mysql 3.23.38
2 EDB exploits
2.1
CVSSv2
CVE-2004-0381
mysqlbug in MySQL allows local users to overwrite arbitrary files via a symlink attack on the failed-mysql-bugreport temporary file.
Oracle Mysql 3.20.32a
Oracle Mysql 3.23.10
Oracle Mysql 3.23.2
Oracle Mysql 3.22.30
Oracle Mysql 3.22.32
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.33
Oracle Mysql 3.23.34
Oracle Mysql 3.23.42
Oracle Mysql 3.23.43
Oracle Mysql 3.23.50
Oracle Mysql 3.23.51
Oracle Mysql 3.23.56
Oracle Mysql 3.23.58
Oracle Mysql 4.0.11
Oracle Mysql 4.0.12
Oracle Mysql 4.0.13
Oracle Mysql 4.0.5
Oracle Mysql 4.0.5a
Oracle Mysql 4.0.9
Mysql Mysql 4.1.0
1 Github repository
6.8
CVSSv2
CVE-2004-0957
Unknown vulnerability in MySQL 3.23.58 and previous versions, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct unauthorized activitie...
Oracle Mysql 3.21
Oracle Mysql 3.22
Oracle Mysql 3.23
Oracle Mysql 3.23.10
Oracle Mysql 3.23.27
Oracle Mysql 3.23.28
Oracle Mysql 3.23.34
Oracle Mysql 3.23.36
Oracle Mysql 3.23.42
Oracle Mysql 3.23.43
Oracle Mysql 3.23.5
Oracle Mysql 3.23.50
Oracle Mysql 3.23.56
Oracle Mysql 3.23.58
Oracle Mysql 4.0.11
Oracle Mysql 4.0.20
Oracle Mysql 4.0.3
Oracle Mysql 3.22.28
Oracle Mysql 3.22.29
Oracle Mysql 3.23.23
Oracle Mysql 3.23.24
Oracle Mysql 3.23.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »