CVE-2004-0956Oracle Mysql vulnerability

4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
1.0%
top 22.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Oracle MysqlSuse LinuxUbuntu Linux
Timeline
PublishedJan 10
Latest updateApr 29

Description

MySQL before 4.0.20 allows remote attackers to cause a denial of service (application crash) via a MATCH AGAINST query with an opening double quote but no closing double quote.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDoracle/mysql19 versions+18
NVDsuse/suse_linux6 versions+5

Also affects: Ubuntu Linux 4.1

Patches

Patch: www.gentoo.orgPatch: www.gentoo.org

🔴Vulnerability Details

2
GHSA
GHSA-98qh-53vc-8522: MySQL before 42022-04-29
CVEList
CVE-2004-0956: MySQL before 42004-12-05

📋Vendor Advisories

1
Ubuntu
mysql vulnerabilities2004-11-25