Published: 31/12/2002 Updated: 07/10/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The default configuration of the Windows binary release of MySQL 3.23.2 up to and including 3.23.52 has a NULL root password, which could allow remote malicious users to gain unauthorized root access to the MySQL database.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle mysql 3.23.24
oracle mysql 3.23.25
oracle mysql 3.23.26
oracle mysql 3.23.27
oracle mysql 3.23.41
oracle mysql 3.23.42
oracle mysql 3.23.43
oracle mysql 3.23.44
oracle mysql 3.23.45
oracle mysql 3.23.2
oracle mysql 3.23.29
oracle mysql 3.23.30
oracle mysql 3.23.38
oracle mysql 3.23.4
oracle mysql 3.23.46
oracle mysql 3.23.48
oracle mysql 3.23.9
oracle mysql 3.23.31
oracle mysql 3.23.34
oracle mysql 3.23.36
oracle mysql 3.23.37
oracle mysql 3.23.5
oracle mysql 3.23.50
oracle mysql 3.23.51
oracle mysql 3.23.52
oracle mysql 3.23.10
oracle mysql 3.23.23
oracle mysql 3.23.28
oracle mysql 3.23.3
oracle mysql 3.23.39
oracle mysql 3.23.40
oracle mysql 3.23.47
oracle mysql 3.23.49
oracle mysql 3.23.8

/* source: wwwsecurityfocuscom/bid/5503/info MySQL is is an open source relational database project, and is available for a number of operating systems, including Microsoft Windows A weak default configuration problem has been reported in the Windows binary release of MySQL Reportedly, the root user of the database is defined with no p ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2002-08/0185.html http://www.securityfocus.com/bid/5503 http://www.iss.net/security_center/static/9902.php https://nvd.nist.gov https://www.exploit-db.com/exploits/21725/

CVE-2002-1809

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect