Description

Buffer overflow in the mysql_real_connect function in MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length).

Remediation

References

CVE-2004-0836

Related Vulnerabilities

Oracle Database Server Other Vulnerability (CVE-2002-0857)

WordPress Plugin Events Manager Unspecified Vulnerability (5.5.5)

IBM WebSEAL Session Fixation Vulnerability (CVE-2018-1804)

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8992)

WordPress Plugin Remove WP Update Nags Security Bypass (1.3.0)

Severity

Critical

Classification

CVE-2004-0836 CWE-119

Tags

Missing Update Known Vulnerabilities