This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:mysql:mysql:4.0.20 |
| Detail | |||
|---|---|---|---|
| Vendor | Mysql | First view | 2004-09-28 |
| Product | Mysql | Last view | 2012-10-16 |
| Version | 4.0.20 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:mysql:mysql | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 6.8 | 2012-10-16 | CVE-2012-3177 | Network | Low | Requires ... | |
| 4 | 2012-10-16 | CVE-2012-3166 | Network | Low | Requires ... | |
| 2.1 | 2012-10-16 | CVE-2012-3160 | Local | Low | None Requ... | |
| 4 | 2012-05-03 | CVE-2012-1697 | Network | Low | Requires ... | |
| 4 | 2012-05-03 | CVE-2012-1696 | Network | Low | Requires ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 8.5 | 2009-07-13 | CVE-2009-2446 | Network | Medium | Requires ... | |
| 4.6 | 2008-09-18 | CVE-2008-4098 | Network | High | Requires ... | |
| 3.6 | 2006-08-18 | CVE-2006-4226 | Network | High | Requires ... | |
| 2.1 | 2006-08-09 | CVE-2006-4031 | Local | Low | None Requ... | |
| 5 | 2006-05-05 | CVE-2006-1517 | Network | Low | None Requ... | |
| 5 | 2006-05-05 | CVE-2006-1516 | Network | Low | None Requ... | |
| 4.6 | 2006-02-27 | CVE-2006-0903 | Local | Low | None Requ... | |
| 5 | 2005-08-16 | CVE-2005-2573 | Network | Low | None Requ... | |
| 4.6 | 2005-08-16 | CVE-2005-2558 | Local | Low | None Requ... | |
| 2.1 | 2005-05-02 | CVE-2005-0711 | Local | Low | None Requ... | |
| 4.6 | 2005-05-02 | CVE-2005-0710 | Local | Low | None Requ... | |
| 4.6 | 2005-05-02 | CVE-2005-0709 | Local | Low | None Requ... | |
| 4.6 | 2005-04-14 | CVE-2005-0004 | Local | Low | None Requ... | |
| 6.8 | 2005-02-09 | CVE-2004-0957 | Network | Medium | None Requ... | |
| 5 | 2005-01-10 | CVE-2004-0956 | Network | Low | None Requ... | |
| 4.6 | 2004-09-28 | CVE-2004-0457 | Local | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 33% (1) | CWE-134 | Uncontrolled Format String |
| 33% (1) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 33% (1) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
CAPEC : Common Attack Pattern Enumeration & Classificatio
| id | Name |
|---|---|
| CAPEC-15 | Command Delimiters |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:10693 | The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp metho... |
| oval:org.mitre.oval:def:10479 | MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated... |
| oval:org.mitre.oval:def:10180 | MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated... |
| oval:org.mitre.oval:def:9591 | MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names... |
| oval:org.mitre.oval:def:9915 | MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via ... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:9918 | The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.... |
| oval:org.mitre.oval:def:11036 | sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to... |
| oval:org.mitre.oval:def:10468 | MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a... |
| oval:org.mitre.oval:def:10729 | MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on ca... |
| oval:org.mitre.oval:def:10591 | MySQL before 5.0.67 allows local users to bypass certain privilege checks by ... |
| oval:org.mitre.oval:def:11857 | Multiple format string vulnerabilities in the dispatch_command function in li... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 55734 | MySQL sql_parse.cc dispatch_command() Function Format String DoS |
| 44937 | MySQL MyISAM Table CREATE TABLE Privilege Check Bypass |
| 28012 | MySQL Case Sensitivity Unauthorized Database Creation |
| 27703 | MySQL MERGE Table Privilege Persistence |
| 25228 | MySQL Crafted COM_TABLE_DUMP Request Arbitrary Memory Disclosure |
| id | Description |
|---|---|
| 25226 | MySQL Malformed Login Packet Remote Memory Disclosure |
| 23526 | MySQL Query NULL Charcter Logging Bypass |
| 18897 | MySQL on Windows UDF Create Function Traversal Privilege Escalation |
| 18896 | MySQL User-Defined Function init_syms() Function Overflow |
| 14678 | MySQL CREATE FUNCTION Arbitrary libc Code Execution |
| 14677 | MySQL CREATE FUNCTION mysql.func Table Arbitrary Library Injection |
| 14676 | MySQL CREATE TEMPORARY TABLE Symlink Privilege Escalation |
| 13013 | MySQL mysqlaccess.sh Symlink Arbitrary File Manipulation |
| 10985 | MySQL MATCH..AGAINST Query DoS |
| 10959 | MySQL GRANT ALL ON Privilege Escalation |
| 9015 | MySQL mysqlhotcopy Insecure Temporary File Creation |
