CVE-2005-0082
published 2005-04-14CVE-2005-0082: The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via…
PriorityP415medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.43%
69.6th percentile
The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent to crash.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
| mysql | maxdb | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4rcm-jqm5-f725: The sapdbwa_GetUserData function in MySQL MaxDB 7
ghsa_unreviewed·2022-05-01
CVE-2005-0082 [MEDIUM] GHSA-4rcm-jqm5-f725: The sapdbwa_GetUserData function in MySQL MaxDB 7
The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent to crash.
Red Hat
security flaw
vendor_redhat·2006-01-04·CVSS 7.5
CVE-2006-0082 [HIGH] security flaw
security flaw
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name, a variant of CVE-2005-0397, and as demonstrated using the convert program.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2006-0082 security flaw
bugzilla·2018-08-16·CVSS 7.5
CVE-2006-0082 [HIGH] CVE-2006-0082 security flaw
CVE-2006-0082 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name, a variant of CVE-2005-0397, and as demonstrated using the convert program.
Bugzilla
CVE-2006-0082 ImageMagick format string vulnerability.
bugzilla·2006-01-04·CVSS 7.5
CVE-2006-0082 [HIGH] CVE-2006-0082 ImageMagick format string vulnerability.
CVE-2006-0082 ImageMagick format string vulnerability.
ImageMagick format string vulnerability.
The fix for CVE-2005-0397 is incomplete. As the Debian bug suggests,
by running a command such as:
convert file.jpg file%d%n.jpg
A segfault will result in ImageMagick.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=345876
This issue also affects RHEL3
This issue also affects RHEL2.1
Discussion:
The fix in the debian bug is incomplete, the same code is repeated in blob.c
---
Created attachment 122767
patch for 6.2.5 (Rawhide)
---
Created attachment 122771
patch for 6.0.7 (RHEL 4)
---
Created attachment 122772
patch for 5.5.6 (RHEL 3)
---
Created attachment 122773
patch for 5.3.8 (RHEL 2.1)
---
The fixes are contained in
ImageMagick-6.0.7.1-14 (RHEL4)
ImageMagick-5.5.6-17 (RHE
2005-04-14
Published