mysql(3.23.39 through 3.23.54) Multiple Vulnerabilties
Multiple vulnerabilities have been reported for MySQL. The precise nature of these vulnerabilities are currently unknown however, exploitation of this issue may result in an attacker obtaining unauthorized access, elevated privileges and execution of arbitrary code.
mysql(4.1.0, 4.1.1, 4.1.2, 5.0.0) Password Length Buffer Overflow
MySQL is prone to a remotely exploitable stack-based buffer overflow vulnerability.
This issue exists in the password checking routines and may be triggered by a malicious authentication packet.
Exploitation will be complicated by the fact that the exploit string will be scrambled with a random number generator and may also require a valid password hash. However, if successfully exploited, the attacker may execute arbitrary code in the context of the server.
mysql 3.23.2 through 3.23.38 Password Handler Overflow
MySQL server has been reported prone to a buffer overflow vulnerability when handling user passwords of excessive size.
The issue presents itself, due to a lack of sufficient bounds checking performed when processing MySQL user passwords. A password greater that 16 characters may overrun the bounds of a reserved buffer in memory and corrupt adjacent memory. An attacker with global administrative privileges on an affected MySQL server may potentially exploit this condition to have arbitrary supplied instructions executed in the context of the MySQL server.
mysql 3.2.26 through 3.2.29 Password Change Overflow
Get the latest version of MySQL from www.mysql.com