Vulnerability Name:

CVE-2002-1376 (CCN-10849)

Assigned:2002-12-12
Published:2002-12-12
Updated:2019-10-07
Summary:libmysqlclient client library in MySQL 3.x to 3.23.54, and 4.x to 4.0.6, does not properly verify length fields for certain responses in the (1) read_rows or (2) read_one_row routines, which allows remote attackers to cause a denial of service and possibly execute arbitrary code.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: Gentoo Linux Security Announcement 200212-2.1
remote DOS and arbitrary code execution

Source: CCN
Type: e-matters Security Advisory 04/2002
Multiple MySQL vulnerabilities

Source: CCN
Type: VulnWatch Mailing List, Tue Jan 21 2003 - 19:03:41 CST
Multiple MySQL bugs

Source: MITRE
Type: CNA
CVE-2002-1376

Source: CONECTIVA
Type: UNKNOWN
CLSA-2002:555

Source: CCN
Type: Conectiva Linux Announcement CLSA-2002:555
Several Vulnerabilities

Source: BUGTRAQ
Type: UNKNOWN
20021212 Advisory 04/2002: Multiple MySQL vulnerabilities

Source: BUGTRAQ
Type: UNKNOWN
20021215 GLSA: mysql

Source: BUGTRAQ
Type: UNKNOWN
20021216 [OpenPKG-SA-2002.013] OpenPKG Security Advisory (mysql)

Source: BUGTRAQ
Type: UNKNOWN
20021219 TSLSA-2002-0086 - mysql

Source: CCN
Type: RHSA-2002-288
Updated MySQL packages fix various security issues

Source: CCN
Type: RHSA-2002-289
mysql security update

Source: CCN
Type: RHSA-2003-166
Updated MySQL packages fix vulnerabilities

Source: MISC
Type: UNKNOWN
http://security.e-matters.de/advisories/042002.html

Source: DEBIAN
Type: UNKNOWN
DSA-212

Source: DEBIAN
Type: DSA-212
mysql -- multiple problems

Source: ENGARDE
Type: Patch, Vendor Advisory
ESA-20021213-033

Source: CCN
Type: EnGarde Secure Linux Security Advisory ESA-20021213-033
Several MySQL vulnerabilities.

Source: CCN
Type: Immunix OS Security Advisory IMNX-2003-7+-008-01
mysql

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2002:087

Source: CCN
Type: MySQL Web site
Downloads for the 3.23 version

Source: CCN
Type: OpenPKG-SA-2002.013
MySQL

Source: REDHAT
Type: UNKNOWN
RHSA-2002:288

Source: BID
Type: Patch, Vendor Advisory
6370

Source: CCN
Type: BID-6370
MySQL libmysqlclient Library Read_Rows Buffer Overflow Vulnerability

Source: BID
Type: Patch, Vendor Advisory
6374

Source: CCN
Type: BID-6374
MySQL libmysqlclient Library Read_One_Row Buffer Overflow Vulnerability

Source: CCN
Type: Trustix Secure Linux Security Advisory #2002-0086
mysql -- Multiple issues

Source: CCN
Type: TLSA-2003-7
Multiple MySQL Vulnerabilities

Source: XF
Type: UNKNOWN
mysql-libmysqlclient-readrows-bo(10849)

Source: XF
Type: UNKNOWN
mysql-libmysqlclient-readrows-bo(10849)

Source: XF
Type: UNKNOWN
mysql-libmysqlclient-readonerow-bo(10850)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:oracle:mysql:3.22.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.27:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.32:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.4:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.5:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.8:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.9:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.10:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.23:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.24:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.25:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.27:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.31:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.34:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.36:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.37:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.38:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.39:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.40:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.41:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.42:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.43:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.44:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.45:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.46:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.47:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.48:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.49:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.50:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.51:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.52:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.53:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.53a:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.5a:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:3.4:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:4.5:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:4.5_fp1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:4.5_fp2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:4.5_fp3:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:4.5_mp1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:4.5_mp2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_advanced_reporter:4.5_mp3:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_global_data_manager:4.5:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_global_data_manager:4.5_fp1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_global_data_manager:4.5_fp2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_global_data_manager:4.5_fp3:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_global_data_manager:4.5_mp1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_global_data_manager:4.5_mp2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:netbackup_global_data_manager:4.5_mp3:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:oracle:mysql:3.23.8:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.27:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.49:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.32:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.10:*:*:*:*:*:*:*
  • OR cpe:/a:mysql:mysql:3.23.20:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.23:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.24:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.25:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.27:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.31:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.34:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.36:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.37:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.38:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.39:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.4:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.40:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.41:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.42:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.43:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.44:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.45:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.46:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.47:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.48:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.5:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.50:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.51:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.52:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.53:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.53a:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.9:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.5a:*:*:*:*:*:*:*
  • AND
  • cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:2.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:mandrakesoft:mandrake_single_network_firewall:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:6.5:*:*:*:server:*:*:*
  • OR cpe:/o:conectiva:linux:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.5:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:engardelinux:secure_linux:-:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:1.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.2:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.3:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:engardelinux:secure_professional:-:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:current:*:*:*:*:*:*:*
  • OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:1.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux_server:6.1:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:8:*:*:*:server:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:8:*:*:*:workstation:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:7:*:*:*:server:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:redhat:linux_advanced_workstation:2.1:*:itanium:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.0:*:ppc:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.1:*:ia64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.2:*:ppc:*:*:*:*:*

  • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2002-1376 (CCN-10850)

    Assigned:2002-12-12
    Published:2002-12-12
    Updated:2002-12-12
    Summary:MySQL is vulnerable to a buffer overflow in the libmysql MySQL client library. By sending an overly long read_one_row request to a MySQL client application, a remote attacker in control of a malicious MySQL server could overflow a buffer and cause the victim's MySQL client application to crash, and possibly execute arbitrary code on the victim's system.
    CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): Low
    Privileges Required (PR): None
    User Interaction (UI): None
    Scope:Scope (S): Unchanged
    Impact Metrics:Confidentiality (C): Low
    Integrity (I): Low
    Availibility (A): Low
    CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Low
    Authentication (Au): None
    Impact Metrics:Confidentiality (C): Partial
    Integrity (I): Partial
    Availibility (A): Partial
    7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Low
    Athentication (Au): None
    Impact Metrics:Confidentiality (C): Partial
    Integrity (I): Partial
    Availibility (A): Partial
    Vulnerability Consequences:Gain Access
    References:Source: CCN
    Type: Gentoo Linux Security Announcement 200212-2.1
    remote DOS and arbitrary code execution

    Source: CCN
    Type: e-matters Security Advisory 04/2002
    Multiple MySQL vulnerabilities

    Source: CCN
    Type: VulnWatch Mailing List, Tue Jan 21 2003 - 19:03:41 CST
    Multiple MySQL bugs

    Source: MITRE
    Type: CNA
    CVE-2002-1376

    Source: CCN
    Type: Conectiva Linux Announcement CLSA-2002:555
    Several Vulnerabilities

    Source: CCN
    Type: RHSA-2002-288
    Updated MySQL packages fix various security issues

    Source: CCN
    Type: RHSA-2002-289
    mysql security update

    Source: CCN
    Type: RHSA-2003-166
    Updated MySQL packages fix vulnerabilities

    Source: DEBIAN
    Type: DSA-212
    mysql -- multiple problems

    Source: CCN
    Type: EnGarde Secure Linux Security Advisory ESA-20021213-033
    Several MySQL vulnerabilities.

    Source: CCN
    Type: Immunix OS Security Advisory IMNX-2003-7+-008-01
    mysql

    Source: CCN
    Type: MySQL Web site
    Downloads for the 3.23 version

    Source: CCN
    Type: OpenPKG-SA-2002.013
    MySQL

    Source: CCN
    Type: BID-6370
    MySQL libmysqlclient Library Read_Rows Buffer Overflow Vulnerability

    Source: CCN
    Type: BID-6374
    MySQL libmysqlclient Library Read_One_Row Buffer Overflow Vulnerability

    Source: CCN
    Type: Trustix Secure Linux Security Advisory #2002-0086
    mysql -- Multiple issues

    Source: CCN
    Type: TLSA-2003-7
    Multiple MySQL Vulnerabilities

    Source: XF
    Type: UNKNOWN
    mysql-libmysqlclient-readonerow-bo(10850)

    Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:oracle:mysql:3.23.8:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.27:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.49:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.32:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.10:*:*:*:*:*:*:*
  • OR cpe:/a:mysql:mysql:3.23.20:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.23:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.24:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.25:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.27:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.31:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.34:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.36:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.37:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.38:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.39:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.4:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.40:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.41:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.42:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.43:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.44:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.45:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.46:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.47:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.48:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.5:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.50:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.51:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.52:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.53:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.53a:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.9:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:4.0.5a:*:*:*:*:*:*:*
  • AND
  • cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:2.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:mandrakesoft:mandrake_single_network_firewall:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:6.5:*:*:*:server:*:*:*
  • OR cpe:/o:conectiva:linux:7.0:*:*:*:*:*:*:*
  • OR cpe:/o:trustix:secure_linux:1.5:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:engardelinux:secure_linux:-:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:1.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.2:*:*:*:*:*:*:*
  • OR cpe:/o:conectiva:linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:7.3:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:engardelinux:secure_professional:-:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:current:*:*:*:*:*:*:*
  • OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:openpkg:openpkg:1.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux_server:6.1:*:*:*:*:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:8:*:*:*:server:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:8:*:*:*:workstation:*:*:*
  • OR cpe:/o:turbolinux:turbolinux:7:*:*:*:server:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:redhat:linux_advanced_workstation:2.1:*:itanium:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.0:*:ppc:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.1:*:ia64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:8.2:*:ppc:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20021376
    V
    CVE-2002-1376
    2015-11-16
    oval:org.debian:def:212
    V
    multiple problems
    2002-12-17
    BACK
    oracle mysql 3.22.26
    oracle mysql 3.22.27
    oracle mysql 3.22.28
    oracle mysql 3.22.29
    oracle mysql 3.22.30
    oracle mysql 3.22.32
    oracle mysql 3.23.2
    oracle mysql 3.23.3
    oracle mysql 3.23.4
    oracle mysql 3.23.5
    oracle mysql 3.23.8
    oracle mysql 3.23.9
    oracle mysql 3.23.10
    oracle mysql 3.23.23
    oracle mysql 3.23.24
    oracle mysql 3.23.25
    oracle mysql 3.23.26
    oracle mysql 3.23.27
    oracle mysql 3.23.28
    oracle mysql 3.23.29
    oracle mysql 3.23.30
    oracle mysql 3.23.31
    oracle mysql 3.23.34
    oracle mysql 3.23.36
    oracle mysql 3.23.37
    oracle mysql 3.23.38
    oracle mysql 3.23.39
    oracle mysql 3.23.40
    oracle mysql 3.23.41
    oracle mysql 3.23.42
    oracle mysql 3.23.43
    oracle mysql 3.23.44
    oracle mysql 3.23.45
    oracle mysql 3.23.46
    oracle mysql 3.23.47
    oracle mysql 3.23.48
    oracle mysql 3.23.49
    oracle mysql 3.23.50
    oracle mysql 3.23.51
    oracle mysql 3.23.52
    oracle mysql 3.23.53
    oracle mysql 3.23.53a
    oracle mysql 4.0.0
    oracle mysql 4.0.1
    oracle mysql 4.0.2
    oracle mysql 4.0.3
    oracle mysql 4.0.5a
    symantec_veritas netbackup advanced reporter 3.4
    symantec_veritas netbackup advanced reporter 4.5
    symantec_veritas netbackup advanced reporter 4.5_fp1
    symantec_veritas netbackup advanced reporter 4.5_fp2
    symantec_veritas netbackup advanced reporter 4.5_fp3
    symantec_veritas netbackup advanced reporter 4.5_mp1
    symantec_veritas netbackup advanced reporter 4.5_mp2
    symantec_veritas netbackup advanced reporter 4.5_mp3
    symantec_veritas netbackup global data manager 4.5
    symantec_veritas netbackup global data manager 4.5_fp1
    symantec_veritas netbackup global data manager 4.5_fp2
    symantec_veritas netbackup global data manager 4.5_fp3
    symantec_veritas netbackup global data manager 4.5_mp1
    symantec_veritas netbackup global data manager 4.5_mp2
    symantec_veritas netbackup global data manager 4.5_mp3
    mysql mysql 3.23.8
    mysql mysql 3.22.29
    mysql mysql 3.22.27
    mysql mysql 3.23.49
    mysql mysql 3.22.26
    mysql mysql 3.22.28
    mysql mysql 3.22.30
    mysql mysql 3.22.32
    mysql mysql 3.23.10
    mysql mysql 3.23.20
    mysql mysql 3.23.23
    mysql mysql 3.23.24
    mysql mysql 3.23.25
    mysql mysql 3.23.26
    mysql mysql 3.23.27
    mysql mysql 3.23.28
    mysql mysql 3.23.29
    mysql mysql 3.23.3
    mysql mysql 3.23.30
    mysql mysql 3.23.31
    mysql mysql 3.23.34
    mysql mysql 3.23.36
    mysql mysql 3.23.37
    mysql mysql 3.23.38
    mysql mysql 3.23.39
    mysql mysql 3.23.4
    mysql mysql 3.23.40
    mysql mysql 3.23.41
    mysql mysql 3.23.42
    mysql mysql 3.23.43
    mysql mysql 3.23.44
    mysql mysql 3.23.45
    mysql mysql 3.23.46
    mysql mysql 3.23.47
    mysql mysql 3.23.48
    mysql mysql 3.23.5
    mysql mysql 3.23.50
    mysql mysql 3.23.51
    mysql mysql 3.23.52
    mysql mysql 3.23.53
    mysql mysql 3.23.53a
    mysql mysql 3.23.9
    mysql mysql 4.0.0
    mysql mysql 4.0.1
    mysql mysql 4.0.2
    mysql mysql 4.0.3
    mysql mysql 4.0.5a
    freebsd freebsd *
    debian debian linux 2.2
    redhat linux 7
    mandrakesoft mandrake linux 7.2
    conectiva linux 6.0
    redhat linux 7.1
    mandrakesoft mandrake linux 8.0
    mandrakesoft mandrake single network firewall 7.2
    turbolinux turbolinux 6.5
    conectiva linux 7.0
    trustix secure linux 1.5
    mandrakesoft mandrake linux 8.1
    redhat linux 7.2
    engardelinux secure linux -
    openpkg openpkg 1.0
    mandrakesoft mandrake linux 8.2
    conectiva linux 8.0
    redhat linux 7.3
    debian debian linux 3.0
    engardelinux secure professional -
    openpkg openpkg current
    gentoo linux *
    redhat linux 8.0
    openpkg openpkg 1.1
    mandrakesoft mandrake linux 9.0
    turbolinux turbolinux server 6.1
    turbolinux turbolinux 8
    turbolinux turbolinux 8
    turbolinux turbolinux 7
    redhat enterprise linux 2.1
    redhat linux advanced workstation 2.1
    mandrakesoft mandrake linux 8.0
    mandrakesoft mandrake linux 8.1
    mandrakesoft mandrake linux 8.2
    mysql mysql 3.23.8
    mysql mysql 3.22.29
    mysql mysql 3.22.27
    mysql mysql 3.23.49
    mysql mysql 3.22.26
    mysql mysql 3.22.28
    mysql mysql 3.22.30
    mysql mysql 3.22.32
    mysql mysql 3.23.10
    mysql mysql 3.23.20
    mysql mysql 3.23.23
    mysql mysql 3.23.24
    mysql mysql 3.23.25
    mysql mysql 3.23.26
    mysql mysql 3.23.27
    mysql mysql 3.23.28
    mysql mysql 3.23.29
    mysql mysql 3.23.3
    mysql mysql 3.23.30
    mysql mysql 3.23.31
    mysql mysql 3.23.34
    mysql mysql 3.23.36
    mysql mysql 3.23.37
    mysql mysql 3.23.38
    mysql mysql 3.23.39
    mysql mysql 3.23.4
    mysql mysql 3.23.40
    mysql mysql 3.23.41
    mysql mysql 3.23.42
    mysql mysql 3.23.43
    mysql mysql 3.23.44
    mysql mysql 3.23.45
    mysql mysql 3.23.46
    mysql mysql 3.23.47
    mysql mysql 3.23.48
    mysql mysql 3.23.5
    mysql mysql 3.23.50
    mysql mysql 3.23.51
    mysql mysql 3.23.52
    mysql mysql 3.23.53
    mysql mysql 3.23.53a
    mysql mysql 3.23.9
    mysql mysql 4.0.0
    mysql mysql 4.0.1
    mysql mysql 4.0.2
    mysql mysql 4.0.3
    mysql mysql 4.0.5a
    freebsd freebsd *
    debian debian linux 2.2
    redhat linux 7
    mandrakesoft mandrake linux 7.2
    conectiva linux 6.0
    redhat linux 7.1
    mandrakesoft mandrake linux 8.0
    mandrakesoft mandrake single network firewall 7.2
    turbolinux turbolinux 6.5
    conectiva linux 7.0
    trustix secure linux 1.5
    mandrakesoft mandrake linux 8.1
    redhat linux 7.2
    engardelinux secure linux -
    openpkg openpkg 1.0
    mandrakesoft mandrake linux 8.2
    conectiva linux 8.0
    redhat linux 7.3
    debian debian linux 3.0
    engardelinux secure professional -
    openpkg openpkg current
    gentoo linux *
    redhat linux 8.0
    openpkg openpkg 1.1
    mandrakesoft mandrake linux 9.0
    turbolinux turbolinux server 6.1
    turbolinux turbolinux 8
    turbolinux turbolinux 8
    turbolinux turbolinux 7
    redhat enterprise linux 2.1
    redhat linux advanced workstation 2.1
    mandrakesoft mandrake linux 8.0
    mandrakesoft mandrake linux 8.1
    mandrakesoft mandrake linux 8.2