Description
sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error message.
Remediation
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4304)
WordPress Plugin WP User Switch Security Bypass (1.0.2)
Squid CVE-2019-12523 Vulnerability (CVE-2019-12523)
PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2011-0441)
WordPress Plugin Form Manager Remote Command Execution (1.7.2)