Vendor Dictionary: MySQL

MySQL

Short Name:	MySQL
Previous Names:	[None Entered]
URL:	http://www.mysql.com/ [visit link]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	Web contact form: http://www.mysql.com/company/contact/ Bugs web form: http://bugs.mysql.com/

Vulnerabilities by Vendor Product

MySQL

MySQL

Eventum: 1.3.1; OSVDB ID: 12605 MySQL Eventum Default Vendor Account; OSVDB ID: 12606 MySQL Eventum index.php email Parameter XSS; OSVDB ID: 12607 MySQL Eventum forgot_password.php email Parameter XSS; OSVDB ID: 12608 MySQL Eventum preferences.php Multiple Parameter XSS; OSVDB ID: 12609 MySQL Eventum projects.php Multiple Parameter XSS; 1.3; OSVDB ID: 12605 MySQL Eventum Default Vendor Account; 1.2.2; OSVDB ID: 12605 MySQL Eventum Default Vendor Account; 1.2.1; OSVDB ID: 12605 MySQL Eventum Default Vendor Account; 1.2; OSVDB ID: 12605 MySQL Eventum Default Vendor Account; 1.1; OSVDB ID: 12605 MySQL Eventum Default Vendor Account

MaxDB: 7.5; OSVDB ID: 10532 MySQL MaxDB webdbm Server Field DoS; 7.5.00; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.08; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.11; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.12; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.14; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.15; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.16; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.18; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.19; OSVDB ID: 13086 MySQL MaxDB Web Agent Malformed HTTP Header DoS; OSVDB ID: 13085 MySQL MaxDB Web Agent WebDAV sapdbwa_GetUserData() Function Remote DoS; 7.5.00.23; OSVDB ID: 15993 MySQL MaxDB Webtool Remote getIfHeader() WebDAV Function Remote Overflow

MySQL: 4.0.18; OSVDB ID: 6420 MySQL mysqlbug Symlink Arbitrary File Overwrite; OSVDB ID: 6421 MySQL mysqld_multi Symlink Arbitrary File Overwrite; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; OSVDB ID: 10659 MySQL ALTER MERGE Tables to Change the UNION DoS; OSVDB ID: 10660 MySQL ALTER TABLE/RENAME Forces Old Permission Checks; 4.1.2; OSVDB ID: 7476 MySQL Protocol 4.1 Authentication Scramble String Overflow; OSVDB ID: 7475 MySQL Zero-length Scrambled String Crafted Packet Authentication Bypass; 4.1.1; OSVDB ID: 10660 MySQL ALTER TABLE/RENAME Forces Old Permission Checks; OSVDB ID: 7476 MySQL Protocol 4.1 Authentication Scramble String Overflow; OSVDB ID: 7475 MySQL Zero-length Scrambled String Crafted Packet Authentication Bypass; 4.1.0; OSVDB ID: 7476 MySQL Protocol 4.1 Authentication Scramble String Overflow; OSVDB ID: 7475 MySQL Zero-length Scrambled String Crafted Packet Authentication Bypass; 4.0.20; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; OSVDB ID: 10658 MySQL mysql_real_connect() Function Remote Overflow; 4.0.17; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.16; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.15x; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.14x; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.13; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.12; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.11x; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.10; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.1; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; 4.0.0x; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; OSVDB ID: 10959 MySQL GRANT ALL ON Privilege Escalation; 3.x; OSVDB ID: 9015 MySQL mysqlhotcopy Insecure Temporary File Creation; OSVDB ID: 10959 MySQL GRANT ALL ON Privilege Escalation; 4.0.1x; OSVDB ID: 10959 MySQL GRANT ALL ON Privilege Escalation; 3.23; OSVDB ID: 10660 MySQL ALTER TABLE/RENAME Forces Old Permission Checks; 4.0.23; OSVDB ID: 14677 MySQL CREATE FUNCTION mysql.func Table Arbitrary Library Injection; 4.1.5; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 4.1.6; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 4.1.7; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 4.1.8; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 4.1.9; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 4.1.10; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 4.1.11; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 5.0.4; OSVDB ID: 16727 MySQL Nonexistent '--user' Error Incorrect Privilege Database Invocation; 3.23.58; OSVDB ID: 10660 MySQL ALTER TABLE/RENAME Forces Old Permission Checks; 5.0.0; OSVDB ID: 10660 MySQL ALTER TABLE/RENAME Forces Old Permission Checks

WinMySQLadmin: 1.1; OSVDB ID: 2144 WinMySQLadmin my.ini Cleartext Password Disclosure

Database Server: All Versions; OSVDB ID: 380 MySQL Server on Windows Default Null Root Password; 3.23.x; OSVDB ID: 2144 WinMySQLadmin my.ini Cleartext Password Disclosure; 4.x; OSVDB ID: 2144 WinMySQLadmin my.ini Cleartext Password Disclosure; 3.x; OSVDB ID: 7128 MySQL show database Database Name Exposure; 4.0.0; OSVDB ID: 7128 MySQL show database Database Name Exposure; 4.0.1; OSVDB ID: 7128 MySQL show database Database Name Exposure

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.