Page 164 of 820 results (0.003 seconds)

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking. • http://marc.info/?l=bugtraq&m=98089552030459&w=2 http://www.calderasystems.com/support/security/advisories/CSSA-2001-006.0.txt http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-014.php3 http://www.redhat.com/support/errata/RHSA-2001-003.html •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0

MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password. • http://archives.neohapsis.com/archives/bugtraq/2000-10/0318.html http://www.mysql.com/documentation/mysql/commented/manual.php?section=Security https://exchange.xforce.ibmcloud.com/vulnerabilities/5409 •

CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0

MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string. • http://archives.neohapsis.com/archives/bugtraq/2000-02/0053.html http://www.securityfocus.com/bid/975 •

CVSS: 6.4EPSS: 0%CPEs: 3EXPL: 1

MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege. • https://www.exploit-db.com/exploits/19721 http://www.securityfocus.com/bid/926 •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database. • http://marc.info/?l=bugtraq&m=91479159617803&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/1568 •