Security
Headlines
HeadlinesLatestCVEs

Tag

#sql

CVE-2005-0004: Debian -- Security Information -- DSA-647-1 mysql

The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.

CVE
#sql#vulnerability#debian
CVE-2005-0245

Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE-2005-0247.

CVE-1999-0862: IBM X-Force Exchange

Insecure directory permissions in RPM distribution for PostgreSQL allows local users to gain privileges by reading a plaintext password file.

CVE-1999-0276: IBM X-Force Exchange

mSQL v2.0.1 and below allows remote execution through a buffer overflow.