CVE-2014-0001

Published Jan 31, 2014
Last updated 5 years ago
CVSS info 7.5
Overview

Description: Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.
Source: secalert@redhat.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-119
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4198505-3CEB-4898-B43A-CC1F38334E88",
            "versionEndIncluding": "5.5.34"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA9B3CC0-DF1C-4A86-B2A3-A9D428A5A6E6"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5454336D-724E-4027-A642-1EFCB79C1ADC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5833A489-D6DE-4D51-9E74-189CBC2E28CA"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "133AAFA7-AF42-4D7B-8822-AA2E85611BF5"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F15ADFE-4C28-4F37-91C8-1963E38056FA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD918B47-8319-478B-AB6A-18F502DA691E"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "46395846-C122-470B-8CCC-E8136BB30242"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD8ED2D4-FF24-4F01-A733-26B8B2732304"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4F8BA70-7825-4A7C-A9F1-9303AD5AFA45"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA738715-C5B0-45AC-949A-F11BF8F94737"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DCD7AACD-8481-4868-973B-A5593A370CD7"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE473AF8-C0F0-42A7-B676-E2364E587689"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD62B5E1-6BF5-4702-938B-3100E3E6BE16"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "312DACA6-F414-4EA8-A817-6E1C506AF780"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6095FC85-BF0E-423C-9311-0B6387E91F4B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD0E8107-CAEA-44D7-B82D-2571F7A7E65B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB58C978-1FBE-4BF9-A473-C99FBF943484"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5079BA1C-B1A7-4298-BC8A-EBD63AA45186"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94F7A061-66FE-4EAD-918B-6C4500A21BE4"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DED856E3-69A6-4681-B1EF-871810E8F7C8"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C147F1EE-29ED-4211-9F7E-8D0172BD0045"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0812F864-91E0-4B3E-9CB3-33B7514B9330"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77E105E9-FE65-4B75-9818-D3897294E941"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCC68032-1200-4506-A678-E7DF474E9C28"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19518B17-0C4B-4589-BB41-87DAF0AB4BC6"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54047553-C08F-474C-8650-89AAAC68056B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41EE02F4-02F7-49A3-AFCA-C20BA2AF65C2"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97045EB4-F22C-4694-BFB2-C1EA72705206"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88DC6246-988E-4259-8BAF-4F104ED12936"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.25:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C34D221E-E9D9-4A1D-B3BC-CB66456D004B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FF95406-DAA6-4164-95CE-F88F19C8DE24"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65EF36A4-EC77-46FA-B9E9-24B8DBC71BE2"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.28:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D9F2E70-A2F5-432F-A04C-B5811C1A23E8"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2F018DB-4AC3-4FF4-8B9B-1107F81C25F8"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EFE52C1F-D2AE-4184-938B-9D7D20BEC5E9"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA41F084-4120-45B4-A9A5-B9AB0ADC0E99"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.32:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6675D136-74D4-4C7B-BF75-741E07EF0424"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.33:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44F07E54-B14E-48F6-9501-BF3B854722F4"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E575066C-02B9-49E9-964B-C3FE2B6B6430"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7F09141-70CA-4831-B915-F4396815571C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.5.36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B1DB0EA-01EE-41E5-ACF7-4BB3EDE623E7"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0089EDF-4806-417D-A4F1-63FF03C5AEF3"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "898A5CD5-83A5-4335-835F-759F82862753"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C851FA0E-357E-4B9E-A441-9C74B3526B37"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B12FA18C-AB93-4522-AA2C-303342452E59"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FD31981-E3ED-41D0-92EB-ABA7490D60E5"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E918FF1-8B40-4DC3-9269-1D3BFD18C58D"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BCD7C2D-49E9-4D78-90CF-F747A1584269"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7956E471-E98A-4527-A5F4-863210E09D5A"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "615F499A-5C33-4E79-80FA-9A1453D8A3D4"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AD40EA2-F432-4F89-9E59-0DB4D415CA85"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41494A2D-4BBC-4C3B-841F-878C2430A444"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A62DA4D8-27B4-4026-9035-75AC35F58439"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E948C884-E747-4E7C-B111-4A8DA22E421C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F933CF3-A850-4D3F-A16D-8129E246BF55"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "038D17E1-2932-4D47-A748-F8A1D46B6721"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9028492-4114-4C9A-9E88-4B6C4FA6CC2C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
