7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.952 High
EPSS
Percentile
99.4%
Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.
bazaar.launchpad.net/~maria-captains/maria/5.5/revision/2502.565.64
osvdb.org/102713
rhn.redhat.com/errata/RHSA-2014-0164.html
rhn.redhat.com/errata/RHSA-2014-0173.html
rhn.redhat.com/errata/RHSA-2014-0186.html
rhn.redhat.com/errata/RHSA-2014-0189.html
secunia.com/advisories/52161
security.gentoo.org/glsa/glsa-201409-04.xml
www.mandriva.com/security/advisories?name=MDVSA-2014:029
www.osvdb.org/102714
www.securityfocus.com/bid/65298
www.securitytracker.com/id/1029708
bugzilla.redhat.com/show_bug.cgi?id=1054592
exchange.xforce.ibmcloud.com/vulnerabilities/90901
mariadb.com/kb/en/mariadb-5535-changelog/