MySQL Bindings Vulnerability in OCaml by MySQL
CVE-2009-2942

Currently unrated

Key Information:

Vendor: Mysql-ocaml
Status: Mysql-ocaml
Vendor: CVE Published:; 22 October 2009

🔔 Create Mysql-ocaml Vulnerability Alert

What is CVE-2009-2942?

The mysql-ocaml bindings version 1.0.4 for MySQL exhibit vulnerabilities due to improper handling of the mysql_real_escape_string function. This flaw can permit remote attackers to exploit escaping issues, particularly with multibyte character encodings, potentially leading to unauthorized actions or data breaches. It is crucial for users of this library to apply the necessary patches and updates to mitigate associated risks.

References

http://www.osvdb.org/59030

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/37047

third-party-advisoryx_refsource_SECUNIA

http://www.debian.org/security/2009/dsa-1910

vendor-advisoryx_refsource_DEBIAN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 22, 2009
Vulnerability Reserved
Aug 23, 2009

CVE-2009-2942 Data

JSON