Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2004-0836)

Description

Buffer overflow in the mysql_real_connect function in MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length).

Remediation

References

Related Vulnerabilities

WordPress Plugin WP DSGVO Tools (GDPR) Cross-Site Scripting (3.1.23)

XWiki CVE-2023-26474 Vulnerability (CVE-2023-26474)

WebLogic CVE-2016-0573 Vulnerability (CVE-2016-0573)

WordPress 5.1.x Multiple Vulnerabilities (5.1 - 5.1.1)

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-2603)

Severity

Critical

Classification

CVE-2004-0836 CWE-119

Tags

Missing Update Known Vulnerabilities