BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
MySQL <= 5.0.45 post auth format string vulnerability Jul 08 2009 11:01PM
Kingcope (kcope2 googlemail com)
MySQL (tested: Version 5.0.45 on CentOS (Linux)) Format String Vulnerability
MySQL General Available (GA) Release is vulnerable.
Latest MySQL Version is not vulnerable since the bug if ifdef'ed off.

from mysql-5.0.75 source (mysql-5.0.75.tar.gz) in the file
libmysqld/sql_parse.cc
this source code i...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus