Lucene search

[email protected]CVE-2004-2149

HistoryJul 01, 2005 - 4:00 a.m.

CVE-2004-2149

2005-07-0104:00:00

[email protected]

web.nvd.nist.gov

cve-2004-2149

buffer overflow

libmysqlclient

mysql 4.1.3

mysql 4.1.4

denial of service

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.9%

JSON

Buffer overflow in the prepared statements API in libmysqlclient for MySQL 4.1.3 beta and 4.1.4 allows remote attackers to cause a denial of service via a large number of placeholders.

Affected configurations

NVD

Node

oraclemysqlMatch4.1.3beta

oraclemysqlMatch4.1.4

CPENameOperatorVersion
oracle:mysqloracle mysqleq4.1.3
oracle:mysqloracle mysqleq4.1.4

CPE	Name	Operator	Version
oracle:mysql	oracle mysql	eq	4.1.3
oracle:mysql	oracle mysql	eq	4.1.4

References

bugs.mysql.com/bug.php?id=5194

dev.mysql.com/doc/mysql/en/news-4-1-5.html

securitytracker.com/id?1011408

www.osvdb.org/10244

www.securityfocus.com/bid/11261

exchange.xforce.ibmcloud.com/vulnerabilities/17493

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.9%

JSON

Related for CVE-2004-2149

openvas2 cvelist1 nvd1 nessus1