Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-0780

8 documents6 sources

Severity

9.0CRITICAL

EPSS

70.9%

top 1.30%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Conectiva Linux Mysql Mysql Oracle Mysql

Timeline

PublishedSep 22

Latest updateApr 29

Description

Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages3 packages

▶NVDmysql/mysql4.1.0

▶NVDoracle/mysql61 versions+60

▶NVDconectiva/linux7.0, 8.0, 9.0+2

Patches

Patch: www.debian.org ↗Patch: www.redhat.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-fq6h-5jh8-rmxv: Buffer overflow in get_salt_from_password from sql_acl↗2022-04-29

▶

CVEList

CVE-2003-0780: Buffer overflow in get_salt_from_password from sql_acl↗2003-09-12

▶

💥Exploits & PoCs

Exploit-DB

MySQL 3.23.x/4.0.x - Remote Buffer Overflow↗2003-09-14

▶

Exploit-DB

MySQL 3.23.x/4.0.x - Password Handler Buffer Overflow↗2003-09-10

▶

📋Vendor Advisories

Red Hat

security flaw↗2003-09-10

▶

💬Community

Bugzilla

CVE-2003-0780 security flaw↗2018-08-16

▶

Bugzilla

CAN-2003-0780 MySQL password field buffer overflow↗2003-09-16

▶