CVE-2006-3469
published 2006-07-21CVE-2006-3469: Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of…
PriorityP423medium4CVSS 2.0
AVNACLAuSCNINAP
EXPLOIT
EPSS
26.82%
97.8th percentile
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted print call to display the error message.
Affected
25 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| mysql | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
| oracle | mysql | — | — |
CVSS provenance
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
vendor_redhat4.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vx28-8m2j-873p: Format string vulnerability in time
ghsa_unreviewed·2022-05-01
CVE-2006-3469 [MEDIUM] CWE-134 GHSA-vx28-8m2j-873p: Format string vulnerability in time
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted print call to display the error message.
Ubuntu
mysql-dfsg-4.1 vulnerability
vendor_ubuntu·2006-07-21
CVE-2006-3469 mysql-dfsg-4.1 vulnerability
Title: mysql-dfsg-4.1 vulnerability
Summary: mysql-dfsg-4.1 vulnerability
Jean-David Maillefer discovered a format string bug in the
date_format() function's error reporting. By calling the function with
invalid arguments, an authenticated user could exploit this to crash
the server.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
mysql server DoS
vendor_redhat·2006-06-27·CVSS 4.0
CVE-2006-3469 [MEDIUM] mysql server DoS
mysql server DoS
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted print call to display the error message.
Statement: This issue did not affect mysql packages as shipped with Red Hat Enterprise Linux 2.1, 3, or 5, and Red Hat Application Stack v1 and v2.
No detection rules found.
Bugzilla
CVE-2006-3469 mysql server DoS
bugzilla·2006-08-09·CVSS 4.0
CVE-2006-3469 [MEDIUM] CVE-2006-3469 mysql server DoS
CVE-2006-3469 mysql server DoS
mysql server DoS
A bug was found in the mysql server which can allow an authenticated
remote users cause a temporary DoS on the server. All clients
connected to the server will be disconnected, they will have to
reconnect to the sql server.
Affects 4.1 before 4.1.21 and 5.0 (doesn't affect 3.x)
The upstream bug is here:
http://bugs.mysql.com/bug.php?id=20729
Discussion:
According to upstream this is fixed in 5.0.21, so we should be OK already in FC5 (which is at 5.0.22)
Bugzilla
CVE-2006-3469 mysql server DoS
bugzilla·2006-08-09·CVSS 4.0
CVE-2006-3469 [MEDIUM] CVE-2006-3469 mysql server DoS
CVE-2006-3469 mysql server DoS
mysql server DoS
A bug was found in the mysql server which can allow an authenticated
remote users cause a temporary DoS on the server. All clients
connected to the server will be disconnected, they will have to
reconnect to the sql server.
Affects 4.1 before 4.1.21 and 5.0 (doesn't affect 3.x)
The upstream bug is here:
http://bugs.mysql.com/bug.php?id=20729
Discussion:
Per discussion, the odds of real applications being vulnerable to this seem pretty low, so we're not going
to turn the RHEL4 mysql package just for this --- putting it in the queue for next update.
---
This is more of a concern in a shared hosting environment. Any user who has a
mysql account can cause the mysqld process to crash. I bump this bug for more
attention.
Regards,
Daniel.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375694http://bugs.mysql.com/bug.php?id=20729http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.htmlhttp://docs.info.apple.com/article.html?artnum=305214http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.htmlhttp://secunia.com/advisories/21147http://secunia.com/advisories/21366http://secunia.com/advisories/24479http://secunia.com/advisories/31226http://security.gentoo.org/glsa/glsa-200608-09.xmlhttp://www.debian.org/security/2006/dsa-1112http://www.redhat.com/support/errata/RHSA-2008-0768.htmlhttp://www.securityfocus.com/bid/19032http://www.ubuntu.com/usn/usn-321-1http://www.us-cert.gov/cas/techalerts/TA07-072A.htmlhttp://www.vupen.com/english/advisories/2007/0930https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9827http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375694http://bugs.mysql.com/bug.php?id=20729http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.htmlhttp://docs.info.apple.com/article.html?artnum=305214http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.htmlhttp://secunia.com/advisories/21147http://secunia.com/advisories/21366http://secunia.com/advisories/24479http://secunia.com/advisories/31226http://security.gentoo.org/glsa/glsa-200608-09.xmlhttp://www.debian.org/security/2006/dsa-1112http://www.redhat.com/support/errata/RHSA-2008-0768.htmlhttp://www.securityfocus.com/bid/19032http://www.ubuntu.com/usn/usn-321-1http://www.us-cert.gov/cas/techalerts/TA07-072A.htmlhttp://www.vupen.com/english/advisories/2007/0930https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9827
2006-07-21
Published