(Sun Issues Advisory) MySQL Anonymous Login Processing May Disclose Some Memory Contents to Remote Users
|
|
SecurityTracker Alert ID: 1019916 |
|
SecurityTracker URL: http://securitytracker.com/id/1019916
|
|
CVE Reference:
CVE-2006-1516
(Links to External Site)
|
Date: Apr 23 2008
|
Impact:
Disclosure of system information, Disclosure of user information
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 4.1.18 and prior 4.x versions, 5.0.20 and prior 5.0 versions
|
Description:
A vulnerability was reported in MySQL in the processing of anonymous logins. A remote user may be able to obtain information from the target service.
A remote user can submit a specially crafted login packet to cause the initial db name to be filled with uninitialized memory content, resulting in an error message that may disclose some of the memory contents.
The vendor was notified on April 25, 2006.
Stefano Di Paola reported this vulnerability.
|
Impact:
A remote user can obtain some memory contents from the target service.
|
Solution:
Sun is working on a fix for Solaris.
The Sun advisory is available at:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-236703-1
|
Vendor URL: www.mysql.com/products/mysql/ (Links to External Site)
|
Cause:
Access control error, Input validation error
|
Underlying OS:
UNIX (Solaris - SunOS)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
