Buffer Overflow in MySQL Client Library Affects Multiple Versions
CVE-2002-1376

Currently unrated

Key Information:

Vendor: Symantec Veritas
Status: Netbackup Global Data Manager; Netbackup Advanced Reporter; Mysql
Vendor: CVE Published:; 23 December 2002

Summary

The libmysqlclient library in MySQL versions 3.x through 3.23.54 and 4.x through 4.0.6 is susceptible to a buffer overflow vulnerability. This issue occurs due to inadequate validation of length fields in specific read routines, namely read_rows and read_one_row. An attacker could exploit this flaw to create conditions leading to denial of service or potentially execute arbitrary code on the affected system. It’s crucial for users to evaluate their installations and apply relevant updates or mitigations provided by the vendor.

References

http://marc.info/?l=bugtraq&m=103971644013961&w=2

mailing-listx_refsource_BUGTRAQ

http://marc.info/?l=bugtraq&m=104005886114500&w=2

mailing-listx_refsource_BUGTRAQ

http://marc.info/?l=bugtraq&m=104033188706000&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Dec 23, 2002
Vulnerability Reserved
Dec 16, 2002