Published: 16/08/2005 Updated: 17/12/2019

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in the init_syms function in MySQL 4.0 prior to 4.0.25, 4.1 prior to 4.1.13, and 5.0 prior to 5.0.7-beta allows remote authenticated users who can create user-defined functions to execute arbitrary code via a long function_name field.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle mysql 4.0.0
oracle mysql 4.0.14
oracle mysql 4.0.15
oracle mysql 4.0.5
oracle mysql 4.0.5a
oracle mysql 4.0.9
mysql mysql 4.1.0
oracle mysql 4.1.5
oracle mysql 4.0.11
oracle mysql 4.0.20
oracle mysql 4.0.21
oracle mysql 4.0.24
oracle mysql 4.0.7
oracle mysql 4.0.8
oracle mysql 4.1.2
mysql mysql 4.1.3
mysql mysql 5.0.3
mysql mysql 5.0.4
oracle mysql 4.0.12
oracle mysql 4.0.13
oracle mysql 4.0.3
oracle mysql 4.0.4
oracle mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 4.0.1
oracle mysql 4.0.10
oracle mysql 4.0.18
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.1.0
mysql mysql 4.1.10
oracle mysql 5.0.0
mysql mysql 5.0.1
mysql mysql 5.0.2

USN-180-1 fixed a vulnerability in the mysql-server package (which ships version 40) Version 41 is vulnerable against the same flaw ...

AppSecInc Team SHATTER discovered a buffer overflow in the “CREATE FUNCTION” statement By specifying a specially crafted long function name, a local or remote attacker with function creation privileges could crash the server or execute arbitrary code with server privileges ...

This update only covers binary packages for the big endian MIPS architecture that was mysteriously forgotten in the earlier update For completeness below is the original advisory text: A stack-based buffer overflow in the init_syms function of MySQL, a popular database, has been discovered that allows remote authenticated users who can create use ...

A stack-based buffer overflow in the init_syms function of MySQL, a popular database, has been discovered that allows remote authenticated users who can create user-defined functions to execute arbitrary code via a long function_name field The ability to create user-defined functions is not typically granted to untrusted users The following vulne ...

NVD-CWE-Other http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/035845.html http://www.appsecinc.com/resources/alerts/mysql/2005-002.html http://www.securityfocus.com/bid/14509 http://www.mandriva.com/security/advisories?name=MDKSA-2005:163 http://www.debian.org/security/2005/dsa-829 http://www.debian.org/security/2005/dsa-831 http://www.debian.org/security/2005/dsa-833 http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00005.html http://www.novell.com/linux/security/advisories/2005_21_sr.html http://secunia.com/advisories/17027 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.18.1/SCOSA-2006.18.1.txt http://secunia.com/advisories/20381 http://sunsolve.sun.com/search/document.do?assetkey=1-26-236703-1 http://secunia.com/advisories/29847 http://www.vupen.com/english/advisories/2008/1326/references http://marc.info/?l=bugtraq&m=112354450412427&w=2 https://www.ubuntu.com/usn/usn-180-1/https://www.ubuntu.com/usn/usn-180-2/https://exchange.xforce.ibmcloud.com/vulnerabilities/21737 https://nvd.nist.gov https://usn.ubuntu.com/180-2/

CVE-2005-2558

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect