CVE

Id
13778  
CVE No.
CVE-2005-2572  
Status
Candidate  
Description
MySQL, when running on Windows, allows remote authenticated users with insert privileges on the mysql.func table to cause a denial of service (server hang) and possibly execute arbitrary code via (1) a request for a non-library file, which causes the Windows LoadLibraryEx function to block, or (2) a request for a function in a library that has the XXX_deinit or XXX_init functions defined but is not tailored for mySQL, such as jpeg1x32.dll and jpeg2x32.dll.  
Phase
Assigned (20050816)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
100726 13778 CVE-2005-2572 BUGTRAQ:20050808 [AppSecInc Advisory MYSQL05-V0003] Multiple Issues with MySQL User Defined Functions  View
100727 13778 CVE-2005-2572 URL:http://marc.info/?l=bugtraq&m=112360818900941&w=2  View
100728 13778 CVE-2005-2572 MISC:http://www.appsecinc.com/resources/alerts/mysql/2005-003.html  View
100729 13778 CVE-2005-2572 HP:HPSBPV02918  View
100730 13778 CVE-2005-2572 URL:http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03897409  View
100731 13778 CVE-2005-2572 HP:SSRT101272  View
100732 13778 CVE-2005-2572 URL:http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03897409  View
100733 13778 CVE-2005-2572 BID:62358  View
100734 13778 CVE-2005-2572 URL:http://www.securityfocus.com/bid/62358  View
100735 13778 CVE-2005-2572 SECTRACK:1029010  View
100736 13778 CVE-2005-2572 URL:http://www.securitytracker.com/id/1029010  View
100737 13778 CVE-2005-2572 SECUNIA:54788  View
100738 13778 CVE-2005-2572 URL:http://secunia.com/advisories/54788  View
100739 13778 CVE-2005-2572 XF:mysql-loadlibraryex-dos(21756)  View

Related JVN