Description

MySQL 3.20 through 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for attackers to decrypt the password via brute force methods.

Remediation

References

CVE-2003-1480

Related Vulnerabilities

phpList Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-6178)

WordPress Plugin Download Monitor SQL Injection (4.4.4)

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2057)

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7740)

Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2005-1921)

Severity

Medium

Classification

CVE-2003-1480

Tags

Missing Update Known Vulnerabilities