Lucene search

[email protected]NVD:CVE-2002-1373

HistoryDec 23, 2002 - 5:00 a.m.

CVE-2002-1373

2002-12-2305:00:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.04 Low

EPSS

Percentile

92.1%

JSON

Signed integer vulnerability in the COM_TABLE_DUMP package for MySQL 3.23.x before 3.23.54 allows remote attackers to cause a denial of service (crash or hang) in mysqld by causing large negative integers to be provided to a memcpy call.

Affected configurations

NVD

Node

oraclemysqlMatch3.22.26

oraclemysqlMatch3.22.27

oraclemysqlMatch3.22.28

oraclemysqlMatch3.22.29

oraclemysqlMatch3.22.30

oraclemysqlMatch3.22.32

oraclemysqlMatch3.23.2

oraclemysqlMatch3.23.3

oraclemysqlMatch3.23.4

oraclemysqlMatch3.23.5

oraclemysqlMatch3.23.8

oraclemysqlMatch3.23.9

oraclemysqlMatch3.23.10

oraclemysqlMatch3.23.23

oraclemysqlMatch3.23.24

oraclemysqlMatch3.23.25

oraclemysqlMatch3.23.26

oraclemysqlMatch3.23.27

oraclemysqlMatch3.23.28

oraclemysqlMatch3.23.29

oraclemysqlMatch3.23.30

oraclemysqlMatch3.23.31

oraclemysqlMatch3.23.34

oraclemysqlMatch3.23.36

oraclemysqlMatch3.23.37

oraclemysqlMatch3.23.38

oraclemysqlMatch3.23.39

oraclemysqlMatch3.23.40

oraclemysqlMatch3.23.41

oraclemysqlMatch3.23.42

oraclemysqlMatch3.23.43

oraclemysqlMatch3.23.44

oraclemysqlMatch3.23.45

oraclemysqlMatch3.23.46

oraclemysqlMatch3.23.47

oraclemysqlMatch3.23.48

oraclemysqlMatch3.23.49

oraclemysqlMatch3.23.50

oraclemysqlMatch3.23.51

oraclemysqlMatch3.23.52

oraclemysqlMatch3.23.53

oraclemysqlMatch3.23.53a

oraclemysqlMatch4.0.0

oraclemysqlMatch4.0.1

oraclemysqlMatch4.0.2

oraclemysqlMatch4.0.3

oraclemysqlMatch4.0.5a

References

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000555

marc.info/?l=bugtraq&m=103971644013961&w=2

marc.info/?l=bugtraq&m=104004857201968&w=2

security.e-matters.de/advisories/042002.html

www.debian.org/security/2002/dsa-212

www.mandrakesoft.com/security/advisories?name=MDKSA-2002:087

www.novell.com/linux/security/advisories/2003_003_mysql.html

www.redhat.com/support/errata/RHSA-2002-288.html

www.redhat.com/support/errata/RHSA-2002-289.html

www.redhat.com/support/errata/RHSA-2003-166.html

www.securityfocus.com/advisories/5269

www.securityfocus.com/bid/6368

www.trustix.net/errata/misc/2002/TSL-2002-0086-mysql.asc.txt

exchange.xforce.ibmcloud.com/vulnerabilities/10846

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.04 Low

EPSS

Percentile

92.1%

JSON

Related for NVD:CVE-2002-1373

cvelist1 cve1 suse1 redhat1 osv1 openvas2 nessus4 debian1