CVE-2006-3486Improper Restriction of Operations within the Bounds of a Memory Buffer in Mysql

CWE-1893 documents3 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 74.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
MysqlOracle Mysql
Timeline
PublishedJul 10
Latest updateMay 1

Description

Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local users to cause a denial of service (application crash) via unspecified vectors, which triggers the overflow when the convert_dirname function is called. NOTE: the vendor has disputed this issue via e-mail to CVE, saying that it is only exploitable when the user has access to the configuration file or the

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

NVDmysql/mysql12 versions+11
NVDoracle/mysql22 versions+21

🔴Vulnerability Details

1
GHSA
GHSA-x23g-72hv-58qm: ** DISPUTED ** Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options2022-05-01

📋Vendor Advisories

1
Red Hat
CVE-2006-3486: Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options
CVE-2006-3486 — Mysql vulnerability | cvebase