CVE-2003-0073

2004-09-0104:00:00

[email protected]

web.nvd.nist.gov

mysql

vulnerability

denial of service

cve-2003-0073

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.1 Medium

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.2%

JSON

Double-free vulnerability in mysqld for MySQL before 3.23.55 allows attackers with MySQL access to cause a denial of service (crash) via mysql_change_user.

Affected configurations

NVD

Node

oraclemysqlMatch3.23.31

oraclemysqlMatch3.23.36

oraclemysqlMatch3.23.41

oraclemysqlMatch3.23.47

oraclemysqlMatch3.23.52

oraclemysqlMatch3.23.53

oraclemysqlMatch3.23.54

oraclemysqlMatch3.23.54a

CPENameOperatorVersion
oracle:mysqloracle mysqleq3.23.31
oracle:mysqloracle mysqleq3.23.36
oracle:mysqloracle mysqleq3.23.41
oracle:mysqloracle mysqleq3.23.47
oracle:mysqloracle mysqleq3.23.52
oracle:mysqloracle mysqleq3.23.53
oracle:mysqloracle mysqleq3.23.54
oracle:mysqloracle mysqleq3.23.54a

CPE	Name	Operator	Version
oracle:mysql	oracle mysql	eq	3.23.31
oracle:mysql	oracle mysql	eq	3.23.36
oracle:mysql	oracle mysql	eq	3.23.41
oracle:mysql	oracle mysql	eq	3.23.47
oracle:mysql	oracle mysql	eq	3.23.52
oracle:mysql	oracle mysql	eq	3.23.53
oracle:mysql	oracle mysql	eq	3.23.54
oracle:mysql	oracle mysql	eq	3.23.54a