Next Page >>
mysql
===========================================================
Ubuntu Security Notice USN-1017-1 November 11, 2010
mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities
CVE-2010-2008, CVE-2010-3677, CVE-2010-3678, CVE-2010-3679,
CVE-2010-3680, CVE-2010-3681, CVE-2010-3682, CVE-2010-3683,
CVE-2010-3833, CVE-2010-3834, CVE-2010-3835, CVE-2010-3836,
CVE-2010-3837, CVE-2010-3838, CVE-2010-3839, CVE-2010-3840
===========================================================
A security issue affects the following Ubuntu releases:
Product: WordPress
Version affected: 3.3.1 and prior
Product description:
WordPress is a free and open source blogging tool and publishing platform
powered by PHP and MySQL.
Credit: Jonathan Claudius of Trustwave SpiderLabs
Finding 1: PHP Code Execution and Persistent Cross Site Scripting
Vulnerabilities via 'setup-config.php' page.
MySQL (tested: Version 5.0.45 on CentOS (Linux)) Format String Vulnerability
MySQL General Available (GA) Release is vulnerable.
Latest MySQL Version is not vulnerable since the bug if ifdef'ed off.
from mysql-5.0.75 source (mysql-5.0.75.tar.gz) in the file
libmysqld/sql_parse.cc
this source code is also included in mysql-4.0.0, mysql versions >=
4.0.0 are affected.
function prototype: write(THD *thd, enumenum_server_command command,
===========================================================
Ubuntu Security Notice USN-528-1 October 11, 2007
mysql-dfsg-5.0 vulnerabilities
CVE-2007-2583, CVE-2007-2691, CVE-2007-3780, CVE-2007-3782
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 6.06 LTS
Ubuntu 6.10
Debian Security Advisory DSA-2143-1 security@debian.org
http://www.debian.org/security/ Giuseppe Iuculano
January 14, 2011 http://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : mysql-dfsg-5.0
Vulnerability : several vulnerabilities
Problem type : remote
Debian-specific: no
CVE ID : CVE-2010-3677 CVE-2010-3680 CVE-2010-3681 CVE-2010-3682 CVE-2010-3833 CVE-2010-3834 CVE-2010-3835 CVE-2010-3836 CVE-2010-3837 CVE-2010-3838 CVE-2010-3840
===========================================================
Ubuntu Security Notice USN-897-1 February 10, 2010
mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities
CVE-2008-4098, CVE-2008-4456, CVE-2008-7247, CVE-2009-2446,
CVE-2009-4019, CVE-2009-4030, CVE-2009-4484
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 6.06 LTS
> Platform: unix
> Bug: safemode & open_basedir bypass
> ======
> 2) Bug
> ======
> various mysql functions safemode & open_basedir bypass
> ( LOAD_FILE , INTO DUMPFILE , INTO OUTFILE )
Not a PHP *bug*, so much as yet another reason why "safe mode" and
"open_basedir" are fundamentally wrong ideas (and are being
terminated, with prejudice, in future PHP development). Users (and
Hello,
CVE-2005-2573 is reported for MySQL 4.1.x before 4.1.13 and MySQL 5.0
before 5.0.7. However. I tested this vulnerability in MySQL 5.0.51a on
Windows xp sp2, and found this version vulnerable too.
According to CVE-2008-4098, that is reported because of an incomplete fix for CVE-2008-4097, i think this vulnerability should be reported again for an incomplete fix.
I tested CVE-2005-2573 in MySQL 5.0.51a and windows XP again and found this vulnerability isn't fixed. Here is my done steps for executing this vulnerability.
> Platform: unix
> Bug: safemode & open_basedir bypass
> ======
> 2) Bug
> ======
> various mysql functions safemode & open_basedir bypass
> ( LOAD_FILE , INTO DUMPFILE , INTO OUTFILE )
Not a PHP *bug*, so much as yet another reason why "safe mode" and
"open_basedir" are fundamentally wrong ideas (and are being
terminated, with prejudice, in future PHP development). Users (and
Mandriva Linux Security Advisory MDVSA-2011:012
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mysql
Date : January 17, 2011
Affected: 2010.0, 2010.1
_______________________________________________________________________
Problem Description:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: MySQL: Multiple vulnerabilities
Date: April 06, 2008
Bugs: #201669
ID: 200804-04
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
This security advisory identifies the following vulnerabilities:
* ACE Device Manager and ANM invalid directory permissions
vulnerability
* ANM default user credentials vulnerability
* ANM MySQL default credentials vulnerability
* ANM Java agent privilege escalation
Cisco has released free software updates that address these
vulnerabilities. A workaround that mitigates one of the issues is
available.
Mandriva Linux Security Advisory MDVSA-2009:094
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mysql
Date : April 22, 2009
Affected: 2008.1, 2009.0, Corporate 4.0
_______________________________________________________________________
Problem Description:
http://localhost/mybb.1.2.10/moderation.php?fid=2&action=do_mergeposts
&mergepost[war]=1&mergepost[axe]=2
... and we can see sql error message:
MySQL error: 1054
Unknown column 'war' in 'where clause'
Query: SELECT p.pid, p.uid, p.fid, p.tid, p.visible, p.message, f.usepostcounts
FROM mybb_posts p LEFT JOIN mybb_forums f ON (f.fid=p.fid)
WHERE p.tid='0' AND p.pid IN(war,axe) ORDER BY dateline ASC
Mandriva Linux Security Advisory MDVSA-2010:011
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mysql
Date : January 17, 2010
Affected: 2008.0, 2009.0, Corporate 4.0, Enterprise Server 5.0
_______________________________________________________________________
Problem Description:
Description of vulnerable software:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
TorrentTrader is a feature packed and highly customisable PHP/MySQL Based
BitTorrent tracker. Featuring integrated forums and plenty of administration
options. Please visit www.torrenttrader.org for the support forums.
http://sourceforge.net/projects/torrenttrader
Mandriva Linux Security Advisory MDVSA-2010:012
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mysql
Date : January 17, 2010
Affected: 2009.1, 2010.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2008:028
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mysql
Date : January 29, 2008
Affected: 2007.0, 2007.1, Corporate 4.0
_______________________________________________________________________
Problem Description:
. "(sess_id = '$sessid') AND (start_time > $mintime) AND (remote_ip = '$remote_ip')";
}
...
compares the supplied sessid value with the "sessid" value from sessions table which is an integer.
Mysql, like php, in comparing them, only considers the first integer values of the supplied string.
So the function returns a valid userid and, if you know an existent sessid in table, you can inject
queries in cookies, like this:
Cookie: glf_session=12345678 [SQL HERE]; glfusion=9999999999;
Debian Security Advisory DSA-1413-1 security@debian.org
http://www.debian.org/security/ Noah Meyerhans
November 26, 2007 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : mysql-dfsg, mysql-dfsg-5.0, mysql-dfsg-4.1
Vulnerability : multiple
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2007-2583, CVE-2007-2691, CVE-2007-2692
CVE-2007-3780, CVE-2007-3782, CVE-2007-5925
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: High
Title: MySQL: Multiple vulnerabilities
Date: January 05, 2012
Bugs: #220813, #229329, #237166, #238117, #240407, #277717,
#294187, #303747, #319489, #321791, #339717, #344987, #351413
ID: 201201-02
Mandriva Linux Security Advisory MDVSA-2009:326
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mysql
Date : December 7, 2009
Affected: 2008.0
_______________________________________________________________________
Problem Description:
####################
SphereCMS is a CMS which allow managing forum, archive posts, chat like
posts (named shoutbox), friend in the site and personal profile. It has
one theme, but a buty one.
It uses MySQL as its backend DBMS and is written in PHP language.
####################
- Vulnerability:
####################
dcarey@drewcarey.com [~/public_html]# GET localhost/~dcarey/vuln
<?php
/**
* The base configurations of the WordPress.
*
* This file has the following configurations: MySQL settings, Table Prefix,
* Secret Keys, WordPress Language, and ABSPATH. You can find more information by
* visiting {@link http://codex.wordpress.org/Editing_wp-config.php Editing
* wp-config.php} Codex page. You can get the MySQL settings from your web host.
*
* This file is used by the wp-config.php creation script during the
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: MySQL: Privilege bypass
Date: September 04, 2008
Bugs: #220399
ID: 200809-04
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Debian Security Advisory DSA-2057-1 security@debian.org
http://www.debian.org/security/ Giuseppe Iuculano
June 07, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : mysql-dfsg-5.0
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2010-1626 CVE-2010-1848 CVE-2010-1849 CVE-2010-1850
Introduction:
=============
Matterdaddy Market is a application that allows you to run your own online marketplace or classifieds
listing site similar to Craigslist. It was written in PHP and uses MySQL to for data storage. Additionally,
it uses jQuery for elegant effects and that web 2.0 pizzazz you ve always dreamed of.
The general design is simple and clean which should go well with any site, customization can be done easily
through the CSS file. You can add your header and footer to it or include it in an iframe and you are ready
to roll. And if you want to get your hands dirty in code, the comments will help you know what is going on.
$concat = $notin?' AND ':' OR ';
$glue = $string?"','":',';
switch($DB['TYPE']) {
case 'SQLITE3':
case 'MYSQL':
case 'POSTGRESQL':
case 'ORACLE':
default:
$items = array_chunk($array, 950);
foreach($items as $id => $values){
===========================================================
Ubuntu Security Notice USN-588-2 April 02, 2008
mysql-dfsg-5.0 regression
https://launchpad.net/bugs/209699
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 6.06 LTS
Mandriva Linux Security Advisory MDVSA-2010:093
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mysql
Date : May 7, 2010
Affected: 2009.1, 2010.0
_______________________________________________________________________
Problem Description:
Next Page>>
|
