This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:mysql:mysql:5.0.24a |
| Detail | |||
|---|---|---|---|
| Vendor | Mysql | First view | 2008-05-05 |
| Product | Mysql | Last view | 2012-08-16 |
| Version | 5.0.24a | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:mysql:mysql | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 6.8 | 2012-08-16 | CVE-2009-5026 | Network | Medium | None Requ... | |
| 4 | 2012-01-18 | CVE-2012-0490 | Network | Low | Requires ... | |
| 4 | 2012-01-18 | CVE-2012-0484 | Network | Low | Requires ... | |
| 3 | 2012-01-18 | CVE-2012-0114 | Local | Medium | Requires ... | |
| 4 | 2012-01-18 | CVE-2012-0102 | Network | Low | Requires ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4 | 2012-01-18 | CVE-2012-0101 | Network | Low | Requires ... | |
| 4 | 2012-01-18 | CVE-2012-0087 | Network | Low | Requires ... | |
| 1.7 | 2012-01-18 | CVE-2012-0075 | Network | High | Requires ... | |
| 4 | 2011-01-14 | CVE-2010-3838 | Network | Low | Requires ... | |
| 4 | 2011-01-14 | CVE-2010-3837 | Network | Low | Requires ... | |
| 4 | 2011-01-14 | CVE-2010-3836 | Network | Low | Requires ... | |
| 4 | 2011-01-14 | CVE-2010-3834 | Network | Low | Requires ... | |
| 5 | 2011-01-14 | CVE-2010-3833 | Network | Low | None Requ... | |
| 6 | 2010-06-07 | CVE-2010-1850 | Network | Medium | Requires ... | |
| 5 | 2010-06-07 | CVE-2010-1849 | Network | Low | None Requ... | |
| 6.5 | 2010-06-07 | CVE-2010-1848 | Network | Low | Requires ... | |
| 3.6 | 2010-05-21 | CVE-2010-1626 | Local | Low | None Requ... | |
| 6.8 | 2009-11-30 | CVE-2009-4028 | Network | Medium | None Requ... | |
| 4 | 2009-11-30 | CVE-2009-4019 | Network | Low | Requires ... | |
| 6 | 2009-11-30 | CVE-2008-7247 | Network | Medium | Requires ... | |
| 8.5 | 2009-07-13 | CVE-2009-2446 | Network | Medium | Requires ... | |
| 4.6 | 2008-09-18 | CVE-2008-4098 | Network | High | Requires ... | |
| 4 | 2008-09-10 | CVE-2008-3963 | Network | Low | Requires ... | |
| 4.6 | 2008-05-05 | CVE-2008-2079 | Network | High | Requires ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 21% (3) | CWE-399 | Resource Management Errors |
| 21% (3) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
| 14% (2) | CWE-264 | Permissions, Privileges, and Access Controls |
| 14% (2) | CWE-134 | Uncontrolled Format String |
| 7% (1) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| % | id | Name |
|---|---|---|
| 7% (1) | CWE-89 | Improper Sanitization of Special Elements used in an SQL Command ('... |
| 7% (1) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
| 7% (1) | CWE-20 | Improper Input Validation |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:10133 | MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and 6.0.... |
| oval:org.mitre.oval:def:10521 | MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not pro... |
| oval:org.mitre.oval:def:10591 | MySQL before 5.0.67 allows local users to bypass certain privilege checks by ... |
| oval:org.mitre.oval:def:11857 | Multiple format string vulnerabilities in the dispatch_command function in li... |
| oval:org.mitre.oval:def:8500 | MySQL 5.0 and 5.1 SELECT Statement DOS Vulnerability |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:11349 | mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) prop... |
| oval:org.mitre.oval:def:8510 | MySQL 5.0 and 5.1 Clients with OpenSSL Vulnerability Allows Bypassing Server ... |
| oval:org.mitre.oval:def:10940 | The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5... |
| oval:org.mitre.oval:def:9490 | MySQL before 5.1.46 allows local users to delete the data and index files of ... |
| oval:org.mitre.oval:def:7210 | Oracle MySQL 'COM_FIELD_LIST' Command Packet Security Bypass Vulnerability |
| oval:org.mitre.oval:def:10258 | Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before ... |
| oval:org.mitre.oval:def:7328 | Oracle MySQL Malformed Packet Handling Remote Denial of Service Vulnerability |
| oval:org.mitre.oval:def:6693 | Oracle MySQL 'COM_FIELD_LIST' Command Buffer Overflow Vulnerability |
| oval:org.mitre.oval:def:10846 | Buffer overflow in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remo... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 78388 | Oracle MySQL Server Unspecified Remote DoS (2012-0490) |
| 78379 | Oracle MySQL Server Unspecified Remote DoS (2012-0102) |
| 78378 | Oracle MySQL Server Unspecified Remote DoS (2012-0101) |
| 78377 | Oracle MySQL Server Unspecified Remote DoS (2012-0087) |
| 78374 | Oracle MySQL Server Unspecified Remote Issue (2012-0075) |
| id | Description |
|---|---|
| 78373 | Oracle MySQL Server Unspecified Local Issue |
| 78372 | Oracle MySQL Server Unspecified Remote Information Disclosure |
| 69395 | MySQL Derived Table Grouping DoS |
| 69393 | MySQL GROUP_CONCAT() WITH ROLLUP Modifier DoS |
| 69392 | MySQL Extreme-Value Functions Mixed Arguments DoS |
| 69390 | MySQL Extreme-Value Functions Argument Parsing Type Error DoS |
| 69387 | MySQL LIKE Predicates Pre-Evaluation DoS |
| 64843 | MySQL DROP TABLE Command Symlink MyISAM Table Local Data Deletion |
| 64588 | MySQL Large Packet Infinite Read DoS |
| 64587 | MySQL COM_FIELD_LIST Command Packet Table Name Argument Overflow |
| 64586 | MySQL COM_FIELD_LIST Command Packet Authentication Bypass |
| 60664 | MySQL sql/sql_table.cc Data Home Directory Symlink CREATE TABLE Access Restri... |
| 60489 | MySQL GeomFromWKB() Function First Argument Geometry Value Handling DoS |
| 60488 | MySQL SELECT Statement WHERE Clause Sub-query DoS |
| 60487 | MySQL vio_verify_callback() Function Crafted Certificate MiTM Weakness |
| 55734 | MySQL sql_parse.cc dispatch_command() Function Format String DoS |
| 48021 | MySQL Empty Bit-String Literal Token SQL Statement DoS |
| 44937 | MySQL MyISAM Table CREATE TABLE Privilege Check Bypass |
