• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

MySQL libmysqlclient Library Read_Rows Buffer Overflow Vulnerability

The libmysqlclient library of MySQL contains a buffer overflow in the read_rows function. The issue involves the reading of rows into the client from the server. The client does not verify that the stored row sizes are smaller than the destination buffer.

Successful exploitation of this vulnerability could result in a denial of service or possibly execution of arbitrary code in the security context of the MySQL client. Anything that is linked against libmysql may also be affected by this issue.