MidnightBSD

Advisories for mysql

CVE-2001-1255 MEDIUM

WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 3.23
mysql winmysqladmin 1.1
CVE-2003-0780 HIGH

Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 3.23.10
oracle mysql 4.0.8
oracle mysql 4.0.7
oracle mysql 3.23.23
oracle mysql 3.23.46
oracle mysql 3.23.41
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 3.23.54a
oracle mysql 3.23.26
oracle mysql 3.23.33
oracle mysql 3.23.45
oracle mysql 3.23.31
oracle mysql 4.0.5
oracle mysql 3.23.37
oracle mysql 3.23.53a
oracle mysql 3.23.3
oracle mysql 3.23.5
oracle mysql 3.23.42
oracle mysql 3.23.32
conectiva linux 8.0
oracle mysql 3.23.51
oracle mysql 4.0.13
oracle mysql 3.23.4
oracle mysql 3.23.29
oracle mysql 3.23
oracle mysql 3.23.49
oracle mysql 3.23.50
oracle mysql 3.23.38
oracle mysql 4.0.10
oracle mysql 3.23.53
oracle mysql 3.23.44
oracle mysql 3.23.54
oracle mysql 4.0.12
oracle mysql 3.23.43
oracle mysql 3.23.56
oracle mysql 3.23.8
oracle mysql 3.23.2
oracle mysql 3.23.34
conectiva linux 9.0
conectiva linux 7.0
oracle mysql 3.23.30
oracle mysql 4.0.3
mysql mysql 4.1.0
oracle mysql 3.23.28
oracle mysql 3.23.9
oracle mysql 3.23.25
oracle mysql 4.0.5a
oracle mysql 3.23.24
oracle mysql 3.23.36
oracle mysql 3.23.27
oracle mysql 3.23.39
oracle mysql 4.0.0
oracle mysql 4.0.4
oracle mysql 4.0.2
oracle mysql 3.23.40
oracle mysql 4.0.6
oracle mysql 3.23.47
oracle mysql 3.23.48
oracle mysql 4.0.14
oracle mysql 3.23.22
oracle mysql 3.23.52
oracle mysql 4.0.1
oracle mysql 4.1.0
oracle mysql 3.23.55
CVE-2003-1480 MEDIUM

MySQL 3.20 through 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for attackers to decrypt the password via brute force methods.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
oracle mysql 3.23.10
oracle mysql 4.0.8
oracle mysql 4.0.7
oracle mysql 3.23.23
oracle mysql 3.23.46
oracle mysql 3.23.41
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 3.22.32
oracle mysql 3.23.54a
oracle mysql 3.23.26
oracle mysql 3.23.33
oracle mysql 3.23.45
oracle mysql 3.23.31
oracle mysql 3.23.37
oracle mysql 3.22.30
oracle mysql 3.23.53a
oracle mysql 3.23.3
oracle mysql 3.23.5
oracle mysql 3.23.42
oracle mysql 3.23.32
oracle mysql 3.21
oracle mysql 3.23.51
oracle mysql 3.23.4
oracle mysql 3.23.29
oracle mysql 3.23.49
oracle mysql 3.23.50
oracle mysql 3.23.38
oracle mysql 3.23.53
oracle mysql 3.23.44
oracle mysql 3.23.54
oracle mysql 3.23.43
oracle mysql 3.23.35
oracle mysql 3.23.56
oracle mysql 3.23.8
oracle mysql 3.22.26
oracle mysql 3.23.2
oracle mysql 3.23.34
oracle mysql 3.22
oracle mysql 3.23.30
oracle mysql 4.0.3
mysql mysql 4.1.0
oracle mysql 3.20.32a
oracle mysql 3.23.28
oracle mysql 3.23.9
oracle mysql 3.23.25
oracle mysql 4.0.5a
oracle mysql 3.23.24
oracle mysql 3.23.36
oracle mysql 3.23.27
oracle mysql 3.23.39
oracle mysql 4.0.0
oracle mysql 3.22.29
oracle mysql 4.0.2
oracle mysql 3.23.40
oracle mysql 3.23.47
oracle mysql 3.23.48
oracle mysql 3.22.27
oracle mysql 3.23.22
oracle mysql 3.23.52
oracle mysql 3.22.28
oracle mysql 4.0.1
oracle mysql 4.1.0
oracle mysql 3.20
oracle mysql 3.23.55
CVE-2004-0381 LOW

mysqlbug in MySQL allows local users to overwrite arbitrary files via a symlink attack on the failed-mysql-bugreport temporary file.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 3.23.10
oracle mysql 4.0.8
oracle mysql 4.0.7
oracle mysql 3.23.23
oracle mysql 3.23.46
oracle mysql 3.23.41
oracle mysql 4.0.18
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 3.22.32
oracle mysql 3.23.54a
oracle mysql 3.23.26
oracle mysql 3.23.33
oracle mysql 3.23.45
oracle mysql 3.23.31
oracle mysql 4.0.5
oracle mysql 3.23.37
oracle mysql 3.22.30
oracle mysql 3.23.53a
oracle mysql 3.23.3
oracle mysql 3.23.5
oracle mysql 3.23.42
oracle mysql 3.23.32
oracle mysql 3.23.51
oracle mysql 4.0.13
oracle mysql 3.23.29
oracle mysql 3.23.49
oracle mysql 3.23.50
oracle mysql 3.23.38
oracle mysql 4.0.10
oracle mysql 3.23.53
oracle mysql 3.23.44
oracle mysql 3.23.54
oracle mysql 3.23.58
oracle mysql 4.0.12
oracle mysql 3.23.43
oracle mysql 3.23.56
oracle mysql 3.23.8
oracle mysql 3.22.26
oracle mysql 3.23.2
oracle mysql 3.23.34
oracle mysql 3.23.30
oracle mysql 4.0.3
mysql mysql 4.1.0
oracle mysql 3.20.32a
oracle mysql 3.23.28
oracle mysql 3.23.9
oracle mysql 3.23.25
oracle mysql 4.0.5a
oracle mysql 3.23.24
oracle mysql 3.23.36
oracle mysql 4.0.15
oracle mysql 3.23.27
oracle mysql 3.23.39
oracle mysql 4.0.0
oracle mysql 4.0.4
oracle mysql 3.22.29
oracle mysql 4.0.2
oracle mysql 3.23.40
oracle mysql 4.0.6
oracle mysql 3.23.47
oracle mysql 3.23.48
oracle mysql 4.0.14
oracle mysql 3.22.27
oracle mysql 3.23.22
oracle mysql 3.23.52
oracle mysql 3.22.28
oracle mysql 4.0.1
oracle mysql 4.1.0
oracle mysql 3.23.55
CVE-2004-0627 HIGH

The check_scramble_323 function in MySQL 4.1.x before 4.1.3, and 5.0, allows remote attackers to bypass authentication via a zero-length scrambled string.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 4.1.0
CVE-2004-0628 HIGH

Stack-based buffer overflow in MySQL 4.1.x before 4.1.3, and 5.0, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long scramble string.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 4.1.0
CVE-2004-0835 HIGH

MySQL 3.x before 3.23.59, 4.x before 4.0.19, 4.1.x before 4.1.2, and 5.x before 5.0.1, checks the CREATE/INSERT rights of the original table instead of the target table in an ALTER TABLE RENAME operation, which could allow attackers to conduct unauthorized activities.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
debian debian_linux 3.0
mysql mysql *
oracle mysql *
CVE-2004-0837 LOW

MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service (crash or hang) via multiple threads that simultaneously alter MERGE table UNIONs.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
debian debian_linux 3.0
mysql mysql 4.1.0
oracle mysql *
CVE-2004-0931 MEDIUM

MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTTP request to webdbm with high ASCII values in the Server field, which triggers an assert error in the IsAscii7 function.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00.08
mysql maxdb 7.5.00.15
mysql maxdb 7.5.00.14
mysql maxdb 7.5.00.16
mysql maxdb 7.5.00.11
mysql maxdb 7.5.00.12
CVE-2004-1168 HIGH

Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbitrary code via a long Overwrite header.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00.08
mysql maxdb 7.5.00.15
mysql maxdb 7.5.00.14
mysql maxdb 7.5.00.16
mysql maxdb 7.5.00.11
mysql maxdb 7.5.00.18
mysql maxdb 7.5.00.12
CVE-2004-1169 MEDIUM

MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns, which causes a NULL dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00.08
mysql maxdb 7.5.00.15
mysql maxdb 7.5.00.14
mysql maxdb 7.5.00.16
mysql maxdb 7.5.00.11
mysql maxdb 7.5.00.18
mysql maxdb 7.5.00.12
CVE-2005-0081 MEDIUM

MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via an HTTP request with invalid headers.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00.08
mysql maxdb 7.5.00.15
mysql maxdb 7.5.00.19
mysql maxdb 7.5.00.14
mysql maxdb 7.5.00.16
mysql maxdb 7.5.00.11
mysql maxdb 7.5.00.18
mysql maxdb 7.5.00.12
mysql maxdb 7.5.00
CVE-2005-0082 MEDIUM

The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent to crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00.08
mysql maxdb 7.5.00.15
mysql maxdb 7.5.00.19
mysql maxdb 7.5.00.14
mysql maxdb 7.5.00.16
mysql maxdb 7.5.00.11
mysql maxdb 7.5.00.18
mysql maxdb 7.5.00.12
mysql maxdb 7.5.00
CVE-2005-0083 MEDIUM

MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote attackers to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_String::ReallocString, (2) DBMCli_String::operator, (3) DBMCli_Buffer::ForceResize, (4) DBMCli_Wizard::InstallDatabase, (5) DBMCli_Devspaces::Complete, (6) DBMWeb_TemplateWizard::askForWriteCountStep5, or (7) DBMWeb_DBMWeb::wizardDB functions, which triggers a null dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00
CVE-2005-0111 HIGH

Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote attackers to execute arbitrary code via a long password parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00
CVE-2005-0684 HIGH

Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb 7.5.00.08
mysql maxdb 7.5.00.15
mysql maxdb 7.5.00.19
mysql maxdb 7.5.00.14
mysql maxdb 7.5.00.16
mysql maxdb 7.5.00.11
mysql maxdb 7.5.00.18
mysql maxdb 7.5.00.23
mysql maxdb 7.5.00.12
mysql maxdb 7.5.00
CVE-2005-0709 MEDIUM

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
oracle mysql 4.0.8
oracle mysql 4.0.23
oracle mysql 4.0.7
oracle mysql 4.0.12
oracle mysql 4.1.5
oracle mysql 4.0.18
oracle mysql 4.0.20
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 4.1.3
oracle mysql 4.0.3
oracle mysql 4.1.2
mysql mysql 4.1.0
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 4.0.5
oracle mysql 4.0.5a
oracle mysql 4.0.15
oracle mysql 4.0.21
oracle mysql 4.0.0
mysql mysql 4.1.10
oracle mysql 4.0.13
oracle mysql 4.0.4
oracle mysql 3.23.49
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.0.14
oracle mysql 4.0.10
oracle mysql 4.0.1
oracle mysql 4.1.0
CVE-2005-0710 MEDIUM

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to bypass library path restrictions and execute arbitrary libraries by using INSERT INTO to modify the mysql.func table, which is processed by the udf_init function.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 4.0.8
oracle mysql 4.0.23
oracle mysql 4.0.7
oracle mysql 4.0.12
oracle mysql 4.1.5
oracle mysql 4.0.18
oracle mysql 4.0.20
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 4.1.3
oracle mysql 4.0.3
oracle mysql 4.1.2
mysql mysql 4.1.0
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 4.0.5
oracle mysql 4.0.5a
oracle mysql 4.0.15
oracle mysql 4.0.21
oracle mysql 4.0.0
mysql mysql 4.1.10
oracle mysql 4.0.13
oracle mysql 4.0.4
oracle mysql 3.23.49
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.0.14
oracle mysql 4.0.10
oracle mysql 4.0.1
oracle mysql 4.1.0
CVE-2005-0711 LOW

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 4.0.8
oracle mysql 4.0.23
oracle mysql 4.0.7
oracle mysql 4.0.12
oracle mysql 4.1.5
oracle mysql 4.0.18
oracle mysql 4.0.20
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 4.1.3
oracle mysql 4.0.3
oracle mysql 4.1.2
mysql mysql 4.1.0
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 4.0.5
oracle mysql 4.0.5a
oracle mysql 4.0.15
oracle mysql 4.0.21
oracle mysql 4.0.0
mysql mysql 4.1.10
oracle mysql 4.0.13
oracle mysql 4.0.4
oracle mysql 3.23.49
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.0.14
oracle mysql 4.0.10
oracle mysql 4.0.1
oracle mysql 4.1.0
CVE-2005-1274 HIGH

Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via an HTTP unlock request and a long "If" parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql maxdb *
mysql maxdb 7.5.00.25
CVE-2005-1636 MEDIUM

mysql_install_db in MySQL 4.1.x before 4.1.12 and 5.x up to 5.0.4 creates the mysql_install_db.X file with a predictable filename and insecure permissions, which allows local users to execute arbitrary SQL commands by modifying the file's contents.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.0.3
oracle mysql 4.0.5a
mysql mysql 5.0.2
oracle mysql 4.0.8
oracle mysql 4.0.7
oracle mysql 5.0.0
oracle mysql 4.0.0
mysql mysql 5.0.1
oracle mysql 4.0.4
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 4.0.3
oracle mysql 4.0.2
mysql mysql 5.0.4
oracle mysql 4.0.6
oracle mysql 4.0.10
oracle mysql 4.0.5
oracle mysql 4.0.1
CVE-2005-2467 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in MySQL Eventum 1.5.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to view.php, (2) release parameter to list.php, or (3) F parameter to get_jsrs_data.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql eventum 1.2
mysql eventum 1.5.5
mysql eventum 1.3.1
mysql eventum 1.5.4
mysql eventum 1.3
mysql eventum 1.4
mysql eventum 1.1
mysql eventum 1.2.2
CVE-2005-2468 MEDIUM

Multiple SQL injection vulnerabilities in MySQL Eventum 1.5.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) isCorrectPassword or (2) userExist function in class.auth.php, getCustomFieldReport function in (4) custom_fields.php, (5) custom_fields_graph.php, or (6) class.report.php, or the insert function in (7) releases.php or (8) class.release.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql eventum 1.2
mysql eventum 1.5.5
mysql eventum 1.3.1
mysql eventum 1.5.4
mysql eventum 1.3
mysql eventum 1.4
mysql eventum 1.1
mysql eventum 1.2.2
CVE-2005-2558 MEDIUM

Stack-based buffer overflow in the init_syms function in MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta allows remote authenticated users who can create user-defined functions to execute arbitrary code via a long function_name field.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 4.0.8
oracle mysql 4.0.7
oracle mysql 4.0.12
oracle mysql 4.1.5
oracle mysql 4.0.18
oracle mysql 4.0.20
mysql mysql 5.0.1
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 4.1.3
oracle mysql 4.0.3
oracle mysql 4.1.2
mysql mysql 4.1.0
mysql mysql 5.0.4
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 4.0.5
oracle mysql 4.0.24
mysql mysql 5.0.3
oracle mysql 4.0.5a
mysql mysql 5.0.2
oracle mysql 4.0.15
oracle mysql 4.0.21
oracle mysql 5.0.0
oracle mysql 4.0.0
mysql mysql 4.1.10
oracle mysql 4.0.13
oracle mysql 4.0.4
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.0.14
oracle mysql 4.0.10
oracle mysql 4.0.1
oracle mysql 4.1.0
CVE-2005-2573 MEDIUM

The mysql_create_function function in sql_udf.cc for MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta, when running on Windows, uses an incomplete blacklist in a directory traversal check, which allows attackers to include arbitrary files via the backslash (\) character.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 4.0.8
oracle mysql 4.0.7
oracle mysql 4.0.12
oracle mysql 4.1.5
oracle mysql 4.0.18
oracle mysql 4.0.20
mysql mysql 5.0.1
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 4.1.3
oracle mysql 4.0.3
oracle mysql 4.1.2
mysql mysql 4.1.0
mysql mysql 5.0.4
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 4.0.5
oracle mysql 4.0.24
mysql mysql 5.0.3
oracle mysql 4.0.5a
mysql mysql 5.0.2
oracle mysql 4.0.15
oracle mysql 4.0.21
oracle mysql 5.0.0
oracle mysql 4.0.0
mysql mysql 4.1.10
oracle mysql 4.0.13
oracle mysql 4.0.4
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.0.14
oracle mysql 4.0.10
oracle mysql 4.0.1
oracle mysql 4.1.0
CVE-2006-0903 MEDIUM

MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function. NOTE: this issue was originally reported for the mysql_query function, but the vendor states that since mysql_query expects a null character, this is not an issue for mysql_query.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 4.0.8
oracle mysql 4.0.23
oracle mysql 5.0.6
oracle mysql 3.23.18
oracle mysql 4.0.7
oracle mysql 3.23.46
oracle mysql 4.1.5
oracle mysql 3.23.0
oracle mysql 4.0.20
oracle mysql 4.0.11
oracle mysql 5.0.14
oracle mysql 4.1.2
oracle mysql 3.23.45
oracle mysql 3.23.31
mysql mysql 5.0.10
oracle mysql 4.0.5
oracle mysql 4.1.7
oracle mysql 4.1.16
oracle mysql 3.23.5
oracle mysql 3.23.42
oracle mysql 4.0.21
oracle mysql 3.23.59
oracle mysql 5.0.0
oracle mysql 4.0.13
oracle mysql 3.23.4
oracle mysql 3.23.57
oracle mysql 3.23.50
oracle mysql 3.23.38
mysql mysql 4.1.15
oracle mysql 3.23.12
oracle mysql 3.23.11
oracle mysql 4.1.6
oracle mysql 4.1.9
oracle mysql 5.0.18
mysql mysql 4.1.12
oracle mysql 3.23.54
oracle mysql 4.0.12
oracle mysql 3.23.43
oracle mysql 3.23.14
oracle mysql 3.23.21
oracle mysql 3.23.35
oracle mysql 3.23.56
oracle mysql 4.0.26
mysql mysql 4.1.8
oracle mysql 3.23.8
oracle mysql 3.23.17
oracle mysql 4.1.3
oracle mysql 3.23.34
oracle mysql 3.23.30
oracle mysql 4.0.17
mysql mysql 4.1.14
oracle mysql 3.23.15
oracle mysql 4.1.4
oracle mysql 5.0.11
oracle mysql 5.0.3
oracle mysql 3.23.9
oracle mysql 3.23.25
mysql mysql 5.0.16
oracle mysql 4.0.5a
oracle mysql 3.23.19
oracle mysql 3.23.36
oracle mysql 4.0.15
oracle mysql 3.23.7
oracle mysql 3.23.39
oracle mysql 3.23.1
oracle mysql 4.0.4
oracle mysql 4.1.19
mysql mysql 4.1.13
oracle mysql 4.0.2
oracle mysql 3.23.40
oracle mysql 3.23.48
oracle mysql 4.0.14
oracle mysql 3.23.22
oracle mysql 3.23.52
oracle mysql 5.0.7
oracle mysql 4.0.1
oracle mysql 3.23.10
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.9
oracle mysql 3.23.23
oracle mysql 3.23.41
oracle mysql 4.0.18
mysql mysql 5.0.1
oracle mysql 3.23.13
oracle mysql 4.0.9
oracle mysql 3.23.26
oracle mysql 3.23.33
oracle mysql 4.1.11
oracle mysql 5.0.13
oracle mysql 3.23.20
oracle mysql 5.0.8
oracle mysql 4.0.19
oracle mysql 3.23.37
oracle mysql 3.23.3
oracle mysql 3.23.32
oracle mysql 3.23.51
mysql mysql 4.1.10
oracle mysql 3.23.29
oracle mysql 4.1.17
oracle mysql 4.1.18
oracle mysql 3.23
oracle mysql 3.23.49
oracle mysql 4.0.16
oracle mysql 4.0.10
oracle mysql 3.23.53
oracle mysql 3.23.44
oracle mysql 3.23.58
oracle mysql 4.0.25
oracle mysql 4.0.27
oracle mysql 3.23.2
oracle mysql 4.0.3
mysql mysql 4.1.0
mysql mysql 5.0.17
oracle mysql 3.23.6
mysql mysql 5.0.4
oracle mysql 3.23.28
mysql mysql 4.1.3
oracle mysql 4.0.24
mysql mysql 5.0.2
oracle mysql 3.23.24
oracle mysql 3.23.27
oracle mysql 4.0.0
oracle mysql 4.0.6
oracle mysql 3.23.47
oracle mysql 3.23.16
oracle mysql 4.1.0
oracle mysql 3.23.55
oracle mysql 5.0.12
CVE-2006-1516 MEDIUM

The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 4.0.8
oracle mysql 4.0.23
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 4.0.7
oracle mysql 4.1.5
oracle mysql 4.0.18
oracle mysql 4.0.20
mysql mysql 5.0.1
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 5.0.14
oracle mysql 4.1.2
oracle mysql 4.1.11
oracle mysql 5.0.13
oracle mysql 5.0.8
oracle mysql 4.0.19
mysql mysql 5.0.10
oracle mysql 4.0.5
oracle mysql 4.1.7
oracle mysql 4.1.16
oracle mysql 4.0.21
oracle mysql 5.0.0
mysql mysql 4.1.10
oracle mysql 4.0.13
oracle mysql 4.1.17
oracle mysql 4.1.18
mysql mysql 4.1.15
oracle mysql 4.0.16
oracle mysql 4.1.6
oracle mysql 4.1.9
oracle mysql 4.0.10
oracle mysql 5.0.18
mysql mysql 4.1.12
oracle mysql 4.0.12
oracle mysql 4.0.25
oracle mysql 4.0.26
mysql mysql 4.1.8
oracle mysql 4.1.3
oracle mysql 4.0.3
mysql mysql 4.1.0
oracle mysql 4.0.17
mysql mysql 5.0.17
mysql mysql 4.1.14
mysql mysql 5.0.4
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 5.0.11
oracle mysql 4.0.24
oracle mysql 5.0.3
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 4.0.5a
mysql mysql 5.0.2
oracle mysql 4.0.15
oracle mysql 4.0.0
oracle mysql 4.0.4
mysql mysql 4.1.13
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.0.14
oracle mysql 5.0.7
oracle mysql 4.0.1
oracle mysql 4.1.0
oracle mysql 5.0.12
CVE-2006-1517 MEDIUM

sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 4.0.8
oracle mysql 4.0.23
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 4.0.7
oracle mysql 4.1.5
oracle mysql 4.0.18
oracle mysql 4.0.20
mysql mysql 5.0.1
oracle mysql 4.0.9
oracle mysql 4.0.11
oracle mysql 5.0.14
oracle mysql 4.1.2
oracle mysql 4.1.11
oracle mysql 5.0.13
oracle mysql 5.0.8
oracle mysql 4.0.19
mysql mysql 5.0.10
oracle mysql 4.0.5
oracle mysql 4.1.7
oracle mysql 4.1.16
oracle mysql 4.0.21
oracle mysql 5.0.0
mysql mysql 4.1.10
oracle mysql 4.0.13
oracle mysql 4.1.17
oracle mysql 4.1.18
mysql mysql 4.1.15
oracle mysql 4.0.16
oracle mysql 4.1.6
oracle mysql 4.1.9
oracle mysql 4.0.10
oracle mysql 5.0.18
mysql mysql 4.1.12
oracle mysql 4.0.12
oracle mysql 4.0.25
oracle mysql 4.0.26
mysql mysql 4.1.8
oracle mysql 4.1.3
oracle mysql 4.0.3
mysql mysql 4.1.0
oracle mysql 4.0.17
mysql mysql 5.0.17
mysql mysql 4.1.14
mysql mysql 5.0.4
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 5.0.11
oracle mysql 4.0.24
oracle mysql 5.0.3
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 4.0.5a
mysql mysql 5.0.2
oracle mysql 4.0.15
oracle mysql 4.0.0
oracle mysql 4.0.4
mysql mysql 4.1.13
oracle mysql 4.0.2
oracle mysql 4.0.6
oracle mysql 4.0.14
oracle mysql 5.0.7
oracle mysql 4.0.1
oracle mysql 4.1.0
oracle mysql 5.0.12
CVE-2006-1518 MEDIUM

Buffer overflow in the open_table function in sql_base.cc in MySQL 5.0.x up to 5.0.20 might allow remote attackers to execute arbitrary code via crafted COM_TABLE_DUMP packets with invalid length values.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.16
mysql mysql 5.0.3
mysql mysql 5.0.20
mysql mysql 5.0.5
oracle mysql 5.0.18
mysql mysql 5.0.2
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 5.0.0
mysql mysql 5.0.1
oracle mysql 5.0.14
oracle mysql 5.0.19
oracle mysql 5.0.13
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.0.8
oracle mysql 5.0.11
mysql mysql 5.0.10
oracle mysql 5.0.7
oracle mysql 5.0.3
oracle mysql 5.0.12
CVE-2006-2753 HIGH

SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properly handled when the mysql_real_escape function is used to escape the input.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.18
mysql mysql 4.1.12
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 4.1.5
mysql mysql 4.1.8
mysql mysql 5.0.1
oracle mysql 5.0.14
oracle mysql 5.0.19
oracle mysql 5.0.21
mysql mysql 4.1.0
oracle mysql 4.1.11
oracle mysql 5.0.13
mysql mysql 4.1.2
mysql mysql 5.0.17
mysql mysql 4.1.14
mysql mysql 5.0.4
oracle mysql 5.0.8
mysql mysql 4.1.3
oracle mysql 4.1.4
oracle mysql 5.0.11
mysql mysql 5.0.10
mysql mysql 5.0.16
mysql mysql 5.0.3
mysql mysql 5.0.20
mysql mysql 5.0.2
oracle mysql 4.1.7
oracle mysql 4.1.16
mysql mysql 5.0.0
mysql mysql 4.1.10
oracle mysql 4.1.17
oracle mysql 4.1.18
oracle mysql 4.1.19
mysql mysql 4.1.13
mysql mysql 4.1.15
oracle mysql 4.1.6
oracle mysql 4.1.9
oracle mysql 4.1.1
oracle mysql 5.0.7
oracle mysql 5.0.12
CVE-2006-3081 MEDIUM

mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.0.3
oracle mysql 5.0.18
mysql mysql 5.0.2
oracle mysql 4.1.7
oracle mysql 4.1.16
mysql mysql 5.1.5
mysql mysql 5.0.0
oracle mysql 4.1.5
oracle mysql 4.0.18
mysql mysql 5.0.1
mysql mysql 4.1.13
mysql mysql 4.1.15
mysql mysql 5.0.4
oracle mysql 4.1.4
CVE-2006-3469 MEDIUM

Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted print call to display the error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-134,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
oracle mysql 5.0.18
mysql mysql 4.1.12
mysql mysql 5.0.5.0.21
oracle mysql 5.0.6
oracle mysql 5.0.9
mysql mysql 4.1.8
oracle mysql 5.0.19
oracle mysql 4.1.11
oracle mysql 5.0.13
mysql mysql 5.0.17
mysql mysql 4.1.14
oracle mysql 5.0.11
mysql mysql 5.0.10
mysql mysql 5.0.16
oracle mysql 4.1.7
oracle mysql 4.1.16
oracle mysql 4.1.20
oracle mysql 4.1.18
oracle mysql 4.1.19
mysql mysql 4.1.13
mysql mysql 4.1.15
oracle mysql 4.1.6
oracle mysql 4.1.9
oracle mysql 5.0.12
CVE-2006-3486 LOW

Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local users to cause a denial of service (application crash) via unspecified vectors, which triggers the overflow when the convert_dirname function is called. NOTE: the vendor has disputed this issue via e-mail to CVE, saying that it is only exploitable when the user has access to the configuration file or the Instance Manager daemon. Due to intended functionality, this level of access would already allow the user to disrupt program operation, so this does not cross security boundaries and is not a vulnerability

CVSS 2.0

Severity: LOW

Problem Type: CWE-189,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.18
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 5.1.6
oracle mysql 5.0.22
mysql mysql 5.0.1
oracle mysql 5.0.14
oracle mysql 5.1.9
oracle mysql 5.0.19
oracle mysql 5.0.21
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.1.8
mysql mysql 5.0.17
oracle mysql 5.1.2
mysql mysql 5.0.4
oracle mysql 5.0.8
oracle mysql 5.1.1
oracle mysql 5.0.11
mysql mysql 5.0.10
mysql mysql 5.0.16
mysql mysql 5.0.3
mysql mysql 5.0.20
oracle mysql 5.1.10
mysql mysql 5.0.2
mysql mysql 5.1.5
mysql mysql 5.0.0
oracle mysql 5.1.4
oracle mysql 5.1.7
oracle mysql 5.0.7
oracle mysql 5.1.11
oracle mysql 5.0.12
CVE-2007-5969 HIGH

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mysql mysql_server 6.0.2
mysql mysql_server 5.1.22
mysql mysql_server 6.0
mysql mysql_server 6.0.3
mysql community_server *
mysql community_server 5.0.41
mysql mysql_enterprise_server 5.0.50
mysql community_server 5.0.45
mysql community_server 5.0.44
mysql mysql_server 6.0.1
CVE-2009-4030 MEDIUM

MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,

Products Affected

Vendor Product Version
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.2
mysql mysql 5.1.32
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.5
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.4
oracle mysql 5.1.15
oracle mysql 5.1.12
oracle mysql 5.1.7
oracle mysql 5.1.14
oracle mysql 5.1
oracle mysql 5.1.16
oracle mysql 5.1.21
oracle mysql 5.1.11
CVE-2010-1621 MEDIUM

The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL 5.1 before 5.1.46 does not check privileges before uninstalling a plugin, which allows remote attackers to uninstall arbitrary plugins via the UNINSTALL PLUGIN command.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mysql mysql *
CVE-2010-1626 LOW

MySQL before 5.1.46 allows local users to delete the data and index files of another user's MyISAM table via a symlink attack in conjunction with the DROP TABLE command, a different vulnerability than CVE-2008-4098 and CVE-2008-7247.

CVSS 2.0

Severity: LOW

Problem Type: CWE-59,CWE-264,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
oracle mysql 5.0.86
mysql mysql 5.0.84
mysql mysql 5.1.23
oracle mysql 5.0.67
oracle mysql 5.0.81
oracle mysql 5.0.21
oracle mysql 5.0.85
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.0.51
mysql mysql 5.0.24
oracle mysql 5.0.41
mysql mysql 5.0.20
mysql mysql 5.1.37
mysql mysql 5.1.34
oracle mysql 5.1.30
oracle mysql 5.0.83
mysql mysql 5.1.31
oracle mysql 5.1.36
oracle mysql 5.0.18
mysql mysql 5.0.5.0.21
mysql mysql *
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.0.22
oracle mysql 5.0.88
oracle mysql 5.0.19
oracle mysql 5.0.33
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.35
mysql mysql 5.0.17
oracle mysql 5.1.41
oracle mysql 5.0.37
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.16
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
mysql mysql 5.0.82
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
oracle mysql 5.0.23
oracle mysql 5.1.43
CVE-2010-1848 MEDIUM

Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to bypass intended table grants to read field definitions of arbitrary tables, and on 5.1 to read or delete content of arbitrary tables, via a .. (dot dot) in a table name.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 5.1.6
mysql mysql 5.0.84
mysql mysql 5.1.23
oracle mysql 5.0.67
mysql mysql 5.0.1
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.21
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.1.39
oracle mysql 5.0.8
mysql mysql 5.1.32
oracle mysql 5.0.51
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
oracle mysql 5.1.17
mysql mysql 5.0.20
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.30
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.46
oracle mysql 5.0.18
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.0.22
oracle mysql 5.0.88
oracle mysql 5.0.19
oracle mysql 5.0.33
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
oracle mysql 5.1.2
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.37
oracle mysql 5.0.89
oracle mysql 5.0.11
mysql mysql 5.0.87
oracle mysql 5.0.3
oracle mysql 5.0.45
mysql mysql 5.0.16
mysql mysql 5.0.3
mysql mysql 5.0.2
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.1.12
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.0.7
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-1849 MEDIUM

The my_net_skip_rest function in sql/net_serv.cc in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by sending a large number of packets that exceed the maximum length.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 5.1.6
mysql mysql 5.0.84
mysql mysql 5.1.23
oracle mysql 5.0.67
mysql mysql 5.0.1
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.21
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.1.39
oracle mysql 5.0.8
mysql mysql 5.1.32
oracle mysql 5.0.51
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
oracle mysql 5.1.17
mysql mysql 5.0.20
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.30
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.46
oracle mysql 5.0.18
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.0.22
oracle mysql 5.0.88
oracle mysql 5.0.19
oracle mysql 5.0.33
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
oracle mysql 5.1.2
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.37
oracle mysql 5.0.89
oracle mysql 5.0.11
mysql mysql 5.0.87
oracle mysql 5.0.3
oracle mysql 5.0.45
mysql mysql 5.0.16
mysql mysql 5.0.3
mysql mysql 5.0.2
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.1.12
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.0.7
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-1850 MEDIUM

Buffer overflow in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to execute arbitrary code via a COM_FIELD_LIST command with a long table name.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.6
oracle mysql 5.0.9
oracle mysql 5.1.6
mysql mysql 5.0.84
mysql mysql 5.1.23
oracle mysql 5.0.67
mysql mysql 5.0.1
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.21
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.1.39
oracle mysql 5.0.8
mysql mysql 5.1.32
oracle mysql 5.0.51
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
oracle mysql 5.1.17
mysql mysql 5.0.20
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.30
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.46
oracle mysql 5.0.18
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.0.22
oracle mysql 5.0.88
oracle mysql 5.0.19
oracle mysql 5.0.33
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
oracle mysql 5.1.2
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.37
oracle mysql 5.0.89
oracle mysql 5.0.11
mysql mysql 5.0.87
oracle mysql 5.0.3
oracle mysql 5.0.45
mysql mysql 5.0.16
mysql mysql 5.0.3
mysql mysql 5.0.2
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.1.12
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.0.7
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-3676 MEDIUM

storage/innobase/dict/dict0crea.c in mysqld in Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (assertion failure) by modifying the (1) innodb_file_format or (2) innodb_file_per_table configuration parameters for the InnoDB storage engine, then executing a DDL statement.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.28
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3677 MEDIUM

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a join query that uses a table with a unique SET column.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mysql mysql 5.1.23
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.0.52
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
oracle mysql 5.0.74
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
oracle mysql 5.0.76
mysql mysql 5.0.20
oracle mysql 5.0.48
oracle mysql 5.1.18
mysql mysql 5.0.72
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.0.66
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.0.82
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
mysql mysql 5.0.16
oracle mysql 5.0.36
oracle mysql 5.1.33
oracle mysql 5.0.44
oracle mysql 5.0.34
oracle mysql 5.0.72
oracle mysql 5.0.75
oracle mysql 5.1.42
oracle mysql 5.0.46
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.0.87
oracle mysql 5.0.79
oracle mysql 5.0.64
oracle mysql 5.1.24
mysql mysql 5.0.15
oracle mysql 5.0.58
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.0.70
oracle mysql 5.1.26
oracle mysql 5.0.67
mysql mysql 5.0.54
oracle mysql 5.0.68
mysql mysql 5.0.1
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.0.56
oracle mysql 5.1.3
oracle mysql 5.0.51
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
mysql mysql 5.0.74
mysql mysql 5.1.31
oracle mysql 5.0.40
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.28
oracle mysql 5.0.32
oracle mysql 5.0.78
mysql mysql *
oracle mysql 5.0.90
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.1.19
oracle mysql 5.1.35
mysql mysql 5.0.17
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
oracle mysql 5.0.84
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.0.80
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.0.62
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3678 MEDIUM

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (crash) via (1) IN or (2) CASE operations with NULL arguments that are explicitly specified or indirectly provided by the WITH ROLLUP modifier.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.28
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3679 MEDIUM

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via certain arguments to the BINLOG command, which triggers an access of uninitialized memory, as demonstrated by valgrind.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.28
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3680 MEDIUM

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by creating temporary tables with nullable columns while using InnoDB, which triggers an assertion failure.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.28
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3681 MEDIUM

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using the HANDLER interface and performing "alternate reads from two indexes on a table," which triggers an assertion failure.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.5.0
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3682 MEDIUM

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer dereference in the Item_singlerow_subselect::store function.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mysql mysql 5.1.23
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.0.52
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
oracle mysql 5.0.74
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
oracle mysql 5.0.76
mysql mysql 5.0.20
oracle mysql 5.0.48
oracle mysql 5.1.18
mysql mysql 5.0.72
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.0.66
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.0.82
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
mysql mysql 5.0.16
oracle mysql 5.0.36
oracle mysql 5.1.33
oracle mysql 5.0.44
oracle mysql 5.0.34
oracle mysql 5.0.72
oracle mysql 5.0.75
oracle mysql 5.1.42
oracle mysql 5.0.46
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.0.87
oracle mysql 5.0.79
oracle mysql 5.0.64
oracle mysql 5.1.24
mysql mysql 5.0.15
oracle mysql 5.0.58
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.0.70
oracle mysql 5.1.26
oracle mysql 5.0.67
mysql mysql 5.0.54
oracle mysql 5.0.68
mysql mysql 5.0.1
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.0.56
oracle mysql 5.1.3
oracle mysql 5.0.51
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
mysql mysql 5.0.74
mysql mysql 5.1.31
oracle mysql 5.0.40
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.28
oracle mysql 5.0.32
oracle mysql 5.0.78
mysql mysql *
oracle mysql 5.0.90
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.1.19
oracle mysql 5.1.35
mysql mysql 5.0.17
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
oracle mysql 5.0.84
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.0.80
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.0.62
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3683 MEDIUM

Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a crafted request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.5.0
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3833 MEDIUM

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 does not properly propagate type errors, which allows remote attackers to cause a denial of service (server crash) via crafted arguments to extreme-value functions such as (1) LEAST and (2) GREATEST, related to KILL_BAD_DATA and a "CREATE TABLE ... SELECT."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.0.6
oracle mysql 5.1.6
mysql mysql 5.1.23
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.27
oracle mysql 5.0.52
oracle mysql 5.0.21
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.0.18
oracle mysql 5.0.22
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.0.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 5.0.37
oracle mysql 5.0.11
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.0.3
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.0.7
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.9
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.0.8
oracle mysql 5.0.51
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
mysql mysql 5.1.31
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.0.33
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-3834 MEDIUM

Unspecified vulnerability in MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via vectors related to "materializing a derived table that required a temporary table for grouping" and "user variable assignments."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.0.6
oracle mysql 5.1.6
mysql mysql 5.1.23
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.27
oracle mysql 5.0.52
oracle mysql 5.0.21
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.0.18
oracle mysql 5.0.22
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.0.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 5.0.37
oracle mysql 5.0.11
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.0.3
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.0.7
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.9
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.0.8
oracle mysql 5.0.51
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
mysql mysql 5.1.31
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.0.33
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-3835 MEDIUM

MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (mysqld server crash) by performing a user-variable assignment in a logical expression that is calculated and stored in a temporary table for GROUP BY, then causing the expression value to be used after the table is created, which causes the expression to be re-evaluated instead of accessing its value from the table.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.5.0
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3836 MEDIUM

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (assertion failure and server crash) via vectors related to view preparation, pre-evaluation of LIKE predicates, and IN Optimizers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.0.6
oracle mysql 5.1.6
mysql mysql 5.1.23
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.27
oracle mysql 5.0.52
oracle mysql 5.0.21
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.0.18
oracle mysql 5.0.22
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.0.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 5.0.37
oracle mysql 5.0.11
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.0.3
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.0.7
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.9
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.0.8
oracle mysql 5.0.51
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
mysql mysql 5.1.31
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.0.33
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-3837 MEDIUM

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a prepared statement that uses GROUP_CONCAT with the WITH ROLLUP modifier, probably triggering a use-after-free error when a copied object is modified in a way that also affects the original object.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.0.6
oracle mysql 5.1.6
mysql mysql 5.1.23
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.27
oracle mysql 5.0.52
oracle mysql 5.0.21
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.0.18
oracle mysql 5.0.22
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.0.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 5.0.37
oracle mysql 5.0.11
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.0.3
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.0.7
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.9
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.0.8
oracle mysql 5.0.51
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
mysql mysql 5.1.31
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.0.33
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-3838 MEDIUM

MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a query that uses the (1) GREATEST or (2) LEAST function with a mixed list of numeric and LONGBLOB arguments, which is not properly handled when the function's result is "processed using an intermediate temporary table."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.0.6
oracle mysql 5.1.6
mysql mysql 5.1.23
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.0.14
oracle mysql 5.1.27
oracle mysql 5.0.52
oracle mysql 5.0.21
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
oracle mysql 5.0.0
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.0.18
oracle mysql 5.0.22
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.0.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 5.0.37
oracle mysql 5.0.11
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.0.3
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.0.7
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.0.86
oracle mysql 5.0.9
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.13
oracle mysql 5.0.8
oracle mysql 5.0.51
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
mysql mysql 5.1.31
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.0.33
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.0.27
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.0.12
oracle mysql 5.1.43
CVE-2010-3839 MEDIUM

MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (infinite loop) via multiple invocations of a (1) prepared statement or (2) stored procedure that creates a query with nested JOIN statements.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.5.0
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2010-3840 MEDIUM

The Gis_line_string::init_from_wkb function in sql/spatial.cc in MySQL 5.1 before 5.1.51 allows remote authenticated users to cause a denial of service (server crash) by calling the PolyFromWKB function with Well-Known Binary (WKB) data containing a crafted number of (1) line strings or (2) line points.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.37
oracle mysql 5.1.9
oracle mysql 5.1.27
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
oracle mysql 5.1.17
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.28
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.1.42
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2011-2262 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote attackers to affect availability via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.54
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.15
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.1.15
oracle mysql 5.5.26
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.24
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.62
oracle mysql 5.5.3
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.5.28
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.64
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.55
oracle mysql 5.5.25
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.5.6
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.5.21
oracle mysql 5.5.11
oracle mysql 5.1.63
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.5.23
oracle mysql 5.1.28
oracle mysql 5.5.22
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.41
oracle mysql 5.1.23
oracle mysql 5.1.65
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.27
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2012-0075 LOW

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect integrity via unknown vectors.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.0.52
oracle mysql 5.1.54
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.1.1
oracle mysql 5.5.20
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
oracle mysql 5.5.15
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.5.13
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
oracle mysql 5.5.7
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.5.18
oracle mysql 5.5.19
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.1.55
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.0.67
mysql mysql 5.0.54
oracle mysql 5.5.6
mysql mysql 5.0.1
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.5.21
oracle mysql 5.0.51
oracle mysql 5.0.93
oracle mysql 5.5.11
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql 5.0.45
oracle mysql 5.0.94
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.0.92
oracle mysql 5.5.14
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.1.43
CVE-2012-0087 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x and 5.1.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0101 and CVE-2012-0102.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.0.52
oracle mysql 5.1.54
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.1
oracle mysql 5.1.24
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.1.55
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.51
oracle mysql 5.0.93
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql 5.0.45
oracle mysql 5.0.94
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.0.92
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.1.43
CVE-2012-0101 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x and 5.1.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0087 and CVE-2012-0102.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.0.52
oracle mysql 5.1.54
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.1
oracle mysql 5.1.24
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.1.55
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.51
oracle mysql 5.0.93
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql 5.0.45
oracle mysql 5.0.94
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.0.92
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.1.43
CVE-2012-0102 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x and 5.1.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0087 and CVE-2012-0101.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.0.52
oracle mysql 5.1.54
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.1.1
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.1
oracle mysql 5.1.24
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.1.55
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.0.67
mysql mysql 5.0.54
mysql mysql 5.0.1
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.0.51
oracle mysql 5.0.93
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql 5.0.45
oracle mysql 5.0.94
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.0.92
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.1.43
CVE-2012-0112 LOW

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0115, CVE-2012-0119, CVE-2012-0120, CVE-2012-0485, and CVE-2012-0492.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0113 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect confidentiality and availability via unknown vectors, a different vulnerability than CVE-2012-0118.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0114 LOW

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows local users to affect confidentiality and integrity via unknown vectors.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.0.52
oracle mysql 5.1.54
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.1.1
oracle mysql 5.5.20
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
oracle mysql 5.5.15
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.5.13
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
oracle mysql 5.5.7
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.5.18
oracle mysql 5.5.19
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.1.55
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.0.67
mysql mysql 5.0.54
oracle mysql 5.5.6
mysql mysql 5.0.1
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.5.21
oracle mysql 5.0.51
oracle mysql 5.0.93
oracle mysql 5.5.11
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql 5.0.45
oracle mysql 5.0.94
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.0.92
oracle mysql 5.5.14
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.1.43
CVE-2012-0115 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0119, CVE-2012-0120, CVE-2012-0485, and CVE-2012-0492.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0116 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0118 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect confidentiality and availability via unknown vectors, a different vulnerability than CVE-2012-0113.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0119 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0120, CVE-2012-0485, and CVE-2012-0492.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0120 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0485, and CVE-2012-0492.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0484 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect confidentiality via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.0.52
oracle mysql 5.1.54
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.1.1
oracle mysql 5.5.20
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
oracle mysql 5.5.15
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.5.13
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
oracle mysql 5.5.7
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.5.18
oracle mysql 5.5.19
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.1.55
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.0.67
mysql mysql 5.0.54
oracle mysql 5.5.6
mysql mysql 5.0.1
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.5.21
oracle mysql 5.0.51
oracle mysql 5.0.93
oracle mysql 5.5.11
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql 5.0.45
oracle mysql 5.0.94
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.0.92
oracle mysql 5.5.14
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.1.43
CVE-2012-0485 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0120, and CVE-2012-0492.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0490 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect availability via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
mysql mysql 5.0.30
oracle mysql 5.1.37
oracle mysql 5.0.81
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.0.52
oracle mysql 5.1.54
oracle mysql 5.1.39
oracle mysql 5.0.38
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.1.1
oracle mysql 5.5.20
mysql mysql 5.0.24
mysql mysql 5.0.10
oracle mysql 5.0.41
mysql mysql 5.0.66
oracle mysql 5.5.15
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.0.83
oracle mysql 5.1.15
mysql mysql 5.0.56
oracle mysql 5.0.50
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
mysql mysql 5.0.60
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
mysql mysql 5.0.36
oracle mysql 5.5.2
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 5.5.13
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.0.75
oracle mysql 5.1.42
oracle mysql 5.5.7
mysql mysql 5.0.45b
oracle mysql 5.1.4
mysql mysql 5.0.82
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.5.18
oracle mysql 5.5.19
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 5.1.55
oracle mysql 5.0.86
mysql mysql 5.0.84
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.0.67
mysql mysql 5.0.54
oracle mysql 5.5.6
mysql mysql 5.0.1
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.13
oracle mysql 5.0.85
oracle mysql 5.1.3
oracle mysql 5.5.21
oracle mysql 5.0.51
oracle mysql 5.0.93
oracle mysql 5.5.11
oracle mysql 5.0.25
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
mysql mysql 5.0.0
mysql mysql 5.0.22.1.0.1
oracle mysql 5.0.42
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.0.30
oracle mysql 5.0.32
mysql mysql 5.0.5.0.21
oracle mysql 5.0.90
oracle mysql 5.0.91
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.0.88
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 5.0.89
mysql mysql 5.0.87
oracle mysql 5.0.45
mysql mysql 5.0.2
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql 5.0.45
oracle mysql 5.0.94
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.0.92
oracle mysql 5.5.14
oracle mysql 5.0.77
oracle mysql 5.1.44
mysql mysql 5.0.44
oracle mysql 5.1.16
oracle mysql 5.0.23
oracle mysql 5.1.11
oracle mysql 5.0.26
oracle mysql 5.1.43
CVE-2012-0492 LOW

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0120, and CVE-2012-0485.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.8
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-0583 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.60 and earlier, and 5.5.19 and earlier, allows remote authenticated users to affect availability, related to MyISAM.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.1.1
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql *
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.1.43
CVE-2012-0882 HIGH

Buffer overflow in yaSSL, as used in MySQL 5.5.20 and possibly other versions including 5.5.x before 5.5.22 and 5.1.x before 5.1.62, allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by VulnDisco Pack Professional 9.17. NOTE: as of 20120224, this disclosure has no actionable information. However, because the module author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. NOTE: due to lack of details, it is not clear whether this issue is a duplicate of CVE-2012-0492 or another CVE.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.55
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.1.58
oracle mysql 5.5.6
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.13
oracle mysql 5.1.54
oracle mysql 5.1.3
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.5.21
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.11
oracle mysql 5.1.17
oracle mysql 5.5.15
oracle mysql 5.1.10
oracle mysql 5.1.18
mysql mysql 5.1.37
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.20
oracle mysql 5.1.22
oracle mysql 5.1.30
oracle mysql 5.1.15
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.7
oracle mysql 5.1.52
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.1.28
oracle mysql 5.5.3
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.2
oracle mysql 5.1.41
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.23
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.42
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.0
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.43
CVE-2012-1696 MEDIUM

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.19 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 4.0.8
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 3.23.46
oracle mysql 3.23.0
oracle mysql 3.23.54a
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 4.1.2
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.1
oracle mysql 4.0.5
oracle mysql 5.0.41
oracle mysql 4.1.7
oracle mysql 5.1.34
oracle mysql 3.23.59
oracle mysql 3.21
oracle mysql 3.23.57
oracle mysql 5.1.15
oracle mysql 3.23.38
mysql mysql 4.1.15
oracle mysql 3.23.12
oracle mysql 4.1.6
oracle mysql 5.1.45
oracle mysql 5.1.21
mysql mysql 4.1.12
oracle mysql 4.0.12
oracle mysql 3.23.43
oracle mysql 3.23.35
oracle mysql 3.23.56
oracle mysql 4.0.26
mysql mysql_community_server 5.1.21
mysql mysql 4.1.8
oracle mysql 3.23.8
oracle mysql 4.1.3
oracle mysql 3.23.34
oracle mysql 5.5.3
oracle mysql 4.0.17
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 3.23.15
oracle mysql 3.23.9
oracle mysql 5.5.13
oracle mysql 3.23.19
oracle mysql 5.1.33
oracle mysql 3.23.7
oracle mysql 3.23.39
oracle mysql 3.23.1
oracle mysql 5.1.42
mysql mysql_community_server 5.1.20
oracle mysql 4.1.19
mysql mysql_community_server 5.1.4
oracle mysql 4.0.2
oracle mysql 3.23.48
oracle mysql 4.0.1
mysql mysql_community_server 5.1.5
oracle mysql 5.1.55
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 3.23.41
mysql mysql 5.0.1
oracle mysql 3.23.26
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 4.1.11
mysql mysql 4.1.2
oracle mysql 3.23.20
oracle mysql 5.5.21
oracle mysql 3.22.30
oracle mysql 3.23.3
mysql mysql 5.1.37
oracle mysql 3.23.32
mysql mysql 5.0.0
oracle mysql 5.1.20
oracle mysql 3.23.29
oracle mysql 4.1.18
oracle mysql 5.1.53
oracle mysql 3.23
oracle mysql 3.23.49
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 3.23.53
oracle mysql 3.23.44
oracle mysql 5.1.49
oracle mysql 3.23.58
oracle mysql 5.1.28
oracle mysql 3.22.26
oracle mysql 3.23.2
oracle mysql 5.5.5
mysql mysql_community_server 5.1.11
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
mysql mysql 5.0.17
oracle mysql 3.23.6
mysql mysql 5.0.4
oracle mysql 5.1.41
oracle mysql 4.0.24
oracle mysql 4.1.21
mysql mysql 5.0.2
oracle mysql 3.23.24
mysql mysql_community_server 5.1.14
oracle mysql 3.23.27
oracle mysql 3.22.29
oracle mysql 5.1.29
oracle mysql 3.23.47
oracle mysql 5.1.44
oracle mysql 3.23.55
oracle mysql 4.0.23
oracle mysql 3.23.18
oracle mysql 4.0.7
oracle mysql 5.1.57
oracle mysql 4.1.5
oracle mysql 4.0.20
oracle mysql 5.1.37
oracle mysql 4.0.11
mysql mysql_community_server 5.1.18
oracle mysql 5.1.54
oracle mysql 3.23.45
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 3.23.31
oracle mysql 5.5.20
mysql mysql 5.0.24
mysql mysql 5.0.10
mysql mysql_community_server 5.1.10
oracle mysql 5.5.15
mysql mysql 5.0.20
oracle mysql 5.1.18
oracle mysql 4.1.16
oracle mysql 3.23.5
oracle mysql 3.23.42
oracle mysql 4.1.20
mysql mysql_community_server 5.1.17
oracle mysql 4.0.21
mysql mysql 5.1.34
mysql mysql_community_server 5.1.19
oracle mysql 4.0.13
oracle mysql 5.1.22
oracle mysql 3.23.4
oracle mysql 3.23.50
oracle mysql 4.1.22
oracle mysql 5.1.7
oracle mysql 3.23.11
oracle mysql 4.1.9
oracle mysql 5.1.14
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.46
mysql mysql_server 5.1.22
oracle mysql 3.23.54
oracle mysql *
oracle mysql 3.23.14
oracle mysql 3.23.21
oracle mysql 3.23.17
mysql mysql_community_server 5.1.1
oracle mysql 3.22
oracle mysql 5.5.8
oracle mysql 3.23.30
mysql mysql_community_server 5.1.6
oracle mysql 3.20.32a
mysql mysql 4.1.14
mysql mysql_community_server 5.1.22
oracle mysql 4.1.4
oracle mysql 5.5.2
oracle mysql 3.23.25
oracle mysql 5.5.4
mysql mysql 5.0.16
mysql mysql 5.0.3
oracle mysql 4.0.5a
mysql mysql 5.1.5
oracle mysql 3.23.36
oracle mysql 4.0.15
oracle mysql 4.0.4
oracle mysql 5.5.7
oracle mysql 5.1.4
mysql mysql 4.1.13
oracle mysql 3.23.40
oracle mysql 5.5.0
oracle mysql 4.0.14
oracle mysql 3.22.27
oracle mysql 5.1
oracle mysql 3.23.22
oracle mysql 3.23.52
oracle mysql 5.1.24
oracle mysql 5.5.18
oracle mysql 3.23.10
mysql mysql 5.0.15
mysql mysql 5.0.5
oracle mysql 3.23.23
oracle mysql 5.5.6
oracle mysql 4.0.18
oracle mysql 3.23.13
oracle mysql 4.0.9
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 3.22.32
oracle mysql 3.23.33
oracle mysql 5.1.9
oracle mysql 5.5.12
mysql mysql_community_server 5.1.8
oracle mysql 4.0.19
oracle mysql 3.23.37
oracle mysql 5.5.11
oracle mysql 3.23.53a
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql_community_server 5.1.13
oracle mysql 3.23.51
mysql mysql 4.1.10
oracle mysql 5.1.30
oracle mysql_connector/j 5.1.8
oracle mysql 4.1.17
mysql mysql_community_server 5.1.15
oracle mysql 4.0.16
oracle mysql 4.1.1
oracle mysql 4.0.10
mysql mysql_community_server 5.1.9
oracle mysql 5.1.61
oracle mysql 4.0.25
oracle mysql 4.0.27
oracle mysql 4.0.3
mysql mysql_community_server 5.1.12
mysql mysql 4.1.0
oracle mysql 3.23.28
mysql mysql 4.1.3
mysql mysql_community_server 5.1.3
oracle mysql 5.1.23
oracle mysql 5.1.50
mysql mysql_community_server 5.1.2
mysql mysql_community_server 5.1.16
oracle mysql 5.5.16
oracle mysql 4.0.0
oracle mysql 5.5.9
mysql mysql_community_server 5.1.7
oracle mysql 5.1.12
oracle mysql 5.1.56
oracle mysql 4.0.6
oracle mysql 5.5.14
oracle mysql 3.22.28
oracle mysql 5.1.16
oracle mysql 3.23.16
oracle mysql 4.1.0
oracle mysql 5.1.11
oracle mysql 3.20
oracle mysql 5.1.43
CVE-2013-1492 HIGH

Buffer overflow in yaSSL, as used in MySQL 5.1.x before 5.1.68 and 5.5.x before 5.5.30, has unspecified impact and attack vectors, a different vulnerability than CVE-2012-0553.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
oracle mysql 5.1.48
oracle mysql 5.1.6
mysql mysql 5.1.23
oracle mysql 5.1.58
oracle mysql 5.1.57
oracle mysql 5.1.37
oracle mysql 5.1.27
oracle mysql 5.1.51
oracle mysql 5.1.54
oracle mysql 5.1.39
mysql mysql 5.1.32
oracle mysql 5.1.25
oracle mysql 5.5.10
oracle mysql 5.1.1
oracle mysql 5.5.20
oracle mysql 5.5.15
oracle mysql 5.1.18
oracle mysql 5.1.34
mysql mysql 5.1.34
oracle mysql 5.1.22
oracle mysql 5.1.15
oracle mysql 5.5.26
oracle mysql 5.1.7
oracle mysql 5.1.45
oracle mysql 5.1.14
oracle mysql 5.5.24
oracle mysql 5.5.1
oracle mysql 5.1.36
oracle mysql 5.1.21
oracle mysql 5.1.46
oracle mysql 5.1.62
oracle mysql 5.5.3
oracle mysql 5.1.38
oracle mysql 5.1.40
oracle mysql 5.1.2
oracle mysql 5.5.2
oracle mysql 5.5.4
oracle mysql 5.5.13
oracle mysql 5.1.33
mysql mysql 5.1.5
oracle mysql 5.1.42
oracle mysql 5.5.28
oracle mysql 5.5.7
oracle mysql 5.1.4
oracle mysql 5.5.0
oracle mysql 5.1
oracle mysql 5.1.24
oracle mysql 5.1.64
oracle mysql 5.5.29
oracle mysql 5.5.18
oracle mysql 5.5.19
oracle mysql 5.1.55
oracle mysql 5.5.25
oracle mysql 5.1.26
oracle mysql 5.1.59
oracle mysql 5.5.6
oracle mysql 5.5.17
oracle mysql 5.1.60
oracle mysql 5.1.9
oracle mysql 5.5.12
oracle mysql 5.1.13
oracle mysql 5.1.3
oracle mysql 5.5.21
oracle mysql 5.5.11
oracle mysql 5.1.63
oracle mysql 5.1.17
oracle mysql 5.1.10
mysql mysql 5.1.37
oracle mysql 5.1.66
oracle mysql 5.1.20
oracle mysql 5.1.30
oracle mysql 5.1.53
mysql mysql 5.1.31
oracle mysql 5.1.52
oracle mysql 5.1.31
oracle mysql 5.1.47
oracle mysql 5.1.49
oracle mysql 5.1.61
oracle mysql 5.5.23
oracle mysql 5.1.28
oracle mysql 5.5.22
oracle mysql 5.5.5
oracle mysql 5.1.19
oracle mysql 5.1.8
oracle mysql 5.1.35
oracle mysql 5.1.41
oracle mysql 5.1.23
oracle mysql 5.1.65
oracle mysql 5.1.50
oracle mysql 5.5.16
oracle mysql 5.5.9
oracle mysql 5.1.12
oracle mysql 5.1.29
oracle mysql 5.1.56
oracle mysql 5.5.27
oracle mysql 5.1.67
oracle mysql 5.5.14
oracle mysql 5.1.44
oracle mysql 5.1.16
oracle mysql 5.1.11
oracle mysql 5.1.43
CVE-2015-2575 MEDIUM

Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
suse linux_enterprise_software_development_kit 11
debian debian_linux 8.0
mysql mysql *
suse linux_enterprise_server 11
suse linux_enterprise_desktop 11
CVE-2017-15945 HIGH

The installation scripts in the Gentoo dev-db/mysql, dev-db/mariadb, dev-db/percona-server, dev-db/mysql-cluster, and dev-db/mariadb-galera packages before 2017-09-29 have chown calls for user-writable directory trees, which allows local users to gain privileges by leveraging access to the mysql account for creation of a link.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mariadb mariadb *
mysql mysql *