Database vulnerabilities
Showing 551 - 556 of 556 CVEs
- CVE-2001-1274 Published Jan 23, 2001
Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.
- CVE-2001-1275 Published Jan 19, 2001
MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking.
- CVE-2000-0981 Published Dec 19, 2000
MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password.
- CVE-2000-0148 Published Feb 8, 2000
MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string.
- CVE-2000-0045 Published Jan 11, 2000
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
- CVE-1999-1188 Published Dec 27, 1998
mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.
Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.
MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking.
MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password.
MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string.
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.