mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
804 B
804 B
CVE-2002-1376
Description
libmysqlclient client library in MySQL 3.x to 3.23.54, and 4.x to 4.0.6, does not properly verify length fields for certain responses in the (1) read_rows or (2) read_one_row routines, which allows remote attackers to cause a denial of service and possibly execute arbitrary code.
POC
Reference
- http://marc.info/?l=bugtraq&m=103971644013961&w=2
- http://security.e-matters.de/advisories/042002.html
Github
No PoCs found on GitHub currently.