{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2006-1518", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "Buffer overflow in the open_table function in sql_base.cc in MySQL 5.0.x up to 5.0.20 might allow remote attackers to execute arbitrary code via crafted COM_TABLE_DUMP packets with invalid length values." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "20060502 MySQL COM_TABLE_DUMP Information Leakage and Arbitrary commandexecution.", "refsource" : "BUGTRAQ", "url" : "http://www.securityfocus.com/archive/1/432734/100/0/threaded" }, { "name" : "http://www.wisec.it/vulns.php?page=8", "refsource" : "MISC", "url" : "http://www.wisec.it/vulns.php?page=8" }, { "name" : "http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html", "refsource" : "CONFIRM", "url" : "http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html" }, { "name" : "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=365939", "refsource" : "CONFIRM", "url" : "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=365939" }, { "name" : "DSA-1071", "refsource" : "DEBIAN", "url" : "http://www.debian.org/security/2006/dsa-1071" }, { "name" : "DSA-1073", "refsource" : "DEBIAN", "url" : "http://www.debian.org/security/2006/dsa-1073" }, { "name" : "DSA-1079", "refsource" : "DEBIAN", "url" : "http://www.debian.org/security/2006/dsa-1079" }, { "name" : "SUSE-SR:2006:012", "refsource" : "SUSE", "url" : "http://www.novell.com/linux/security/advisories/2006-06-02.html" }, { "name" : "SUSE-SA:2006:036", "refsource" : "SUSE", "url" : "http://lists.suse.com/archive/suse-security-announce/2006-Jun/0011.html" }, { "name" : "VU#602457", "refsource" : "CERT-VN", "url" : "http://www.kb.cert.org/vuls/id/602457" }, { "name" : "17780", "refsource" : "BID", "url" : "http://www.securityfocus.com/bid/17780" }, { "name" : "ADV-2006-1633", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2006/1633" }, { "name" : "1016016", "refsource" : "SECTRACK", "url" : "http://securitytracker.com/id?1016016" }, { "name" : "19929", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/19929" }, { "name" : "20241", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/20241" }, { "name" : "20253", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/20253" }, { "name" : "20333", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/20333" }, { "name" : "20457", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/20457" }, { "name" : "20762", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/20762" }, { "name" : "839", "refsource" : "SREASON", "url" : "http://securityreason.com/securityalert/839" }, { "name" : "mysql-comtabledump-bo(26232)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/26232" } ] } }