Users login

Create an account »

JOIN XATRIX

Users login

Home » Security Advisories» OpenPKG » MySQL buffer overflow, arbitrary code execution

MySQL buffer overflow, arbitrary code execution

According to a security advisory from Reid Borsuk of Application Security Inc, a stack-based buffer overflow exists in the MySQL RDBMS. The buffer overflow allows remote authenticated users who can create user-defined database functions to execute arbitrary code via a long "function_name" field.

  • Vendor: OpenPKG
  • Vendor ID: SA-2005.024
  • Date: December 03, 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________

OpenPKG Security Advisory The OpenPKG Project
http://www.openpkg.org/security.html http://www.openpkg.org
[email protected] [email protected]
OpenPKG-SA-2005.024 03-Dec-2005
________________________________________________________________________

Package: mysql
Vulnerability: buffer overflow, arbitrary code execution
OpenPKG Specific: no

Affected Releases: Affected Packages: Corrected Packages:
OpenPKG CURRENT <= mysql-4.1.12-20050617 >= mysql-4.1.13-20050721
OpenPKG 2.5 N.A. N.A.
OpenPKG 2.4 <= mysql-4.1.12-2.4.0 >= mysql-4.1.12-2.4.1

Description:
According to a security advisory from Reid Borsuk of Application
Security Inc [0], a stack-based buffer overflow exists in the MySQL
RDBMS [1]. The buffer overflow allows remote authenticated users
who can create user-defined database functions to execute arbitrary
code via a long "function_name" field. The Common Vulnerabilities
and Exposures (CVE) project assigned the id CVE-2005-2558 [2] to the
problem.
________________________________________________________________________

References:
[0] http://www.appsecinc.com/resources/alerts/mysql/2005-002.html
[1] http://www.mysql.com/
[2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2558
________________________________________________________________________

For security reasons, this advisory was digitally signed with the
OpenPGP public key "OpenPKG " (ID 63C4CB9F) of the
OpenPKG project which you can retrieve from http://pgp.openpkg.org and
hkp://pgp.openpkg.org. Follow the instructions on http://pgp.openpkg.org/
for details on how to verify the integrity of this advisory.
________________________________________________________________________

-----BEGIN PGP SIGNATURE-----
Comment: OpenPKG

iD8DBQFDkZHYgHWT4GPEy58RAqseAKDSQf/+kOxsxm1qsLLm+ltjQx4xUQCfWpnw
f3BRG7NLaRSz9W6POAZjC5o=
=UotL
-----END PGP SIGNATURE-----

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »