Description

MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking.

Remediation

References

CVE-2001-1275

Related Vulnerabilities

WordPress Plugin Customize WordPress Emails and Alerts-Better Notifications for WP Information Disclosure (1.8.6)

Oracle JRE CVE-2013-0444 Vulnerability (CVE-2013-0444)

WordPress Plugin uTubeVideo Gallery Unspecified Vulnerability (2.0.6)

WordPress Plugin Permalink Manager Lite Cross-Site Scripting (2.2.14)

phpList CVE-2017-20031 Vulnerability (CVE-2017-20031)

Severity

High

Classification

CVE-2001-1275

Tags

Missing Update Known Vulnerabilities