CVE-2014-0001
Published Jan 31, 2014
Last updated 5 years ago
Overview
- Description
- Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4198505-3CEB-4898-B43A-CC1F38334E88",
"versionEndIncluding": "5.5.34"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AA9B3CC0-DF1C-4A86-B2A3-A9D428A5A6E6"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5454336D-724E-4027-A642-1EFCB79C1ADC"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:server:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5833A489-D6DE-4D51-9E74-189CBC2E28CA"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "133AAFA7-AF42-4D7B-8822-AA2E85611BF5"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F15ADFE-4C28-4F37-91C8-1963E38056FA"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DD918B47-8319-478B-AB6A-18F502DA691E"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "46395846-C122-470B-8CCC-E8136BB30242"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD8ED2D4-FF24-4F01-A733-26B8B2732304"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4F8BA70-7825-4A7C-A9F1-9303AD5AFA45"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DA738715-C5B0-45AC-949A-F11BF8F94737"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DCD7AACD-8481-4868-973B-A5593A370CD7"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE473AF8-C0F0-42A7-B676-E2364E587689"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD62B5E1-6BF5-4702-938B-3100E3E6BE16"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "312DACA6-F414-4EA8-A817-6E1C506AF780"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6095FC85-BF0E-423C-9311-0B6387E91F4B"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD0E8107-CAEA-44D7-B82D-2571F7A7E65B"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB58C978-1FBE-4BF9-A473-C99FBF943484"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5079BA1C-B1A7-4298-BC8A-EBD63AA45186"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "94F7A061-66FE-4EAD-918B-6C4500A21BE4"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DED856E3-69A6-4681-B1EF-871810E8F7C8"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C147F1EE-29ED-4211-9F7E-8D0172BD0045"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0812F864-91E0-4B3E-9CB3-33B7514B9330"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "77E105E9-FE65-4B75-9818-D3897294E941"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CCC68032-1200-4506-A678-E7DF474E9C28"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19518B17-0C4B-4589-BB41-87DAF0AB4BC6"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "54047553-C08F-474C-8650-89AAAC68056B"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "41EE02F4-02F7-49A3-AFCA-C20BA2AF65C2"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97045EB4-F22C-4694-BFB2-C1EA72705206"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "88DC6246-988E-4259-8BAF-4F104ED12936"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.25:a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C34D221E-E9D9-4A1D-B3BC-CB66456D004B"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.26:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3FF95406-DAA6-4164-95CE-F88F19C8DE24"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.27:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "65EF36A4-EC77-46FA-B9E9-24B8DBC71BE2"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.28:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D9F2E70-A2F5-432F-A04C-B5811C1A23E8"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.29:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2F018DB-4AC3-4FF4-8B9B-1107F81C25F8"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFE52C1F-D2AE-4184-938B-9D7D20BEC5E9"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.31:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA41F084-4120-45B4-A9A5-B9AB0ADC0E99"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.32:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6675D136-74D4-4C7B-BF75-741E07EF0424"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.33:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "44F07E54-B14E-48F6-9501-BF3B854722F4"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.34:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E575066C-02B9-49E9-964B-C3FE2B6B6430"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.35:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B7F09141-70CA-4831-B915-F4396815571C"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.5.36:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B1DB0EA-01EE-41E5-ACF7-4BB3EDE623E7"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0089EDF-4806-417D-A4F1-63FF03C5AEF3"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "898A5CD5-83A5-4335-835F-759F82862753"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C851FA0E-357E-4B9E-A441-9C74B3526B37"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B12FA18C-AB93-4522-AA2C-303342452E59"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6FD31981-E3ED-41D0-92EB-ABA7490D60E5"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E918FF1-8B40-4DC3-9269-1D3BFD18C58D"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4BCD7C2D-49E9-4D78-90CF-F747A1584269"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7956E471-E98A-4527-A5F4-863210E09D5A"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "615F499A-5C33-4E79-80FA-9A1453D8A3D4"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4AD40EA2-F432-4F89-9E59-0DB4D415CA85"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "41494A2D-4BBC-4C3B-841F-878C2430A444"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A62DA4D8-27B4-4026-9035-75AC35F58439"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E948C884-E747-4E7C-B111-4A8DA22E421C"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0F933CF3-A850-4D3F-A16D-8129E246BF55"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "038D17E1-2932-4D47-A748-F8A1D46B6721"
},
{
"criteria": "cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9028492-4114-4C9A-9E88-4B6C4FA6CC2C"
}
],
"operator": "OR"
}
]
}
]