CVE-2001-1453Improper Restriction of Operations within the Bounds of a Memory Buffer in Oracle Mysql

5 documents3 sources
Severity
7.5HIGHNVD
NVD4.0
EPSS
11.7%
top 6.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Mysql
Timeline
PublishedFeb 9
Latest updateApr 30

Description

Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute arbitrary code via a long host parameter.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDoracle/mysql4.0.9+1

🔴Vulnerability Details

2
GHSA
GHSA-hwgj-465x-qhm2: Buffer overflow in libmysqlclient2022-04-30
GHSA
GHSA-w3vj-p2cf-85rg: Stack-based buffer overflow in the mysql_real_connect function in the MySql client library (libmysqlclient) 42022-04-29

📋Vendor Advisories

1
Red Hat
CVE-2003-1331: Stack-based buffer overflow in the mysql_real_connect function in the MySql client library (libmysqlclient) 4