Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2005-0684
HistoryApr 26, 2005 - 4:00 a.m.

CVE-2005-0684

2005-04-2604:00:00
[email protected]
web.nvd.nist.gov
25
cve-2005-0684
mysql maxdb
buffer overflows
remote code execution
http get request
webdav
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.923 High

EPSS

Percentile

99.0%

JSON

Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent (“%”) sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c.

Affected configurations

NVD
Node
mysqlmaxdbMatch7.5.00
OR
mysqlmaxdbMatch7.5.00.08
OR
mysqlmaxdbMatch7.5.00.11
OR
mysqlmaxdbMatch7.5.00.12
OR
mysqlmaxdbMatch7.5.00.14
OR
mysqlmaxdbMatch7.5.00.15
OR
mysqlmaxdbMatch7.5.00.16
OR
mysqlmaxdbMatch7.5.00.18
OR
mysqlmaxdbMatch7.5.00.19
OR
mysqlmaxdbMatch7.5.00.23

Related

saint 4
packetstorm 1
nvd 1
checkpoint_advisories 1
securityvulns 2
ubuntucve 1
cvelist 1
saint
saint
MySQL MaxDB WebTools special character buffer overflow
2005-12-22 00:00:00
MySQL MaxDB WebTools special character buffer overflow
2005-12-22 00:00:00
MySQL MaxDB WebTools special character buffer overflow
2005-12-22 00:00:00
packetstorm
packetstorm
MaxDB WebDBM GET Buffer Overflow
2009-11-26 00:00:00
nvd
nvd
CVE-2005-0684
2005-04-25 04:00:00
checkpoint_advisories
checkpoint_advisories
MySQL MaxDB Webtool GET Command Buffer Overflow (CVE-2005-0684)
2010-03-01 00:00:00
securityvulns
securityvulns
iDEFENSE Security Advisory 04.25.05: MySQL MaxDB Webtool Remote Lock-Token Stack Overflow Vulnerability
2005-04-27 00:00:00
iDEFENSE Security Advisory 04.25.05: MySQL MaxDB Webtool Remote Stack Overflow Vulnerability
2005-04-27 00:00:00
ubuntucve
ubuntucve
CVE-2005-0684
2005-04-25 00:00:00
cvelist
cvelist
CVE-2005-0684
2005-04-26 04:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.923 High

EPSS

Percentile

99.0%

JSON
Related for CVE-2005-0684
saint4packetstorm1nvd1checkpoint_advisories1securityvulns2ubuntucve1cvelist1