'mod_auth_mysql' Package Multibyte Character Encoding SQL Injection Vulnerability

Bugtraq ID: 33392
Class: Input Validation Error
CVE: CVE-2008-2384
Remote: Yes
Local: No
Published: Jan 21 2009 12:00AM
Updated: Feb 10 2011 07:49PM
Credit: Martin Joey Schulze
Vulnerable: RedHat Enterprise Linux Desktop Workstation 5 client
RedHat Enterprise Linux 5 server
Red Hat Fedora 14
Red Hat Fedora 13
Red Hat Enterprise Linux Workstation 6
Red Hat Enterprise Linux Server 6
mod_auth_mysql mod_auth_mysql 3.0
MandrakeSoft Linux Mandrake 2009.0 x86_64
MandrakeSoft Linux Mandrake 2009.0
MandrakeSoft Linux Mandrake 2008.1 x86_64
MandrakeSoft Linux Mandrake 2008.1
MandrakeSoft Linux Mandrake 2008.0 x86_64
MandrakeSoft Linux Mandrake 2008.0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Debian libapache2-mod-auth-mysql 4.3.9-9
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus