WinTricks Forum - Visualizza messaggio singolo

Giorgius · 06-07-2004, 14.45.35

Effetti:
Chris Anley has reported two vulnerabilities in MySQL, allowing malicious people to gain access to the database or the local system.

1) MySQL fails to properly verify passwords if the client has set a specific client capability flag and specifies a "passwd_len" of NULL. This causes MySQL to accept a NULL password as a valid password and authenticates the user.

Successful exploitation requires that the attacker knows a valid username.

2) A boundary error within the handling of "scramble" strings can reportedly be exploited to execute arbitrary code if the attacker knows a password hash or through brute forcing.

The vulnerabilities only affect beta / developement branches of MySQL 4.1.x and MySQL 5.

Leggi: http://secunia.com/advisories/12020/

06-07-2004, 14.45.35	#1
Giorgius Gold Member Top Poster Registrato: 26-08-2000 Loc.: tokyo city Messaggi: 8.374	MySQL Authentication Vulnerabilities Effetti: Chris Anley has reported two vulnerabilities in MySQL, allowing malicious people to gain access to the database or the local system. 1) MySQL fails to properly verify passwords if the client has set a specific client capability flag and specifies a "passwd_len" of NULL. This causes MySQL to accept a NULL password as a valid password and authenticates the user. Successful exploitation requires that the attacker knows a valid username. 2) A boundary error within the handling of "scramble" strings can reportedly be exploited to execute arbitrary code if the attacker knows a password hash or through brute forcing. The vulnerabilities only affect beta / developement branches of MySQL 4.1.x and MySQL 5. Leggi: http://secunia.com/advisories/12020/