Description
Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command.
Remediation
References
Related Vulnerabilities
WordPress Plugin Social Media Widget by Acurax Cross-Site Scripting (2.2)
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29203)
WordPress Plugin JS Support Ticket Unspecified Vulnerability (1.1.1)
Oracle Database Server CVE-2009-1963 Vulnerability (CVE-2009-1963)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-20401)