CVE-2007-3780

Published: Jul 15, 2007Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service (daemon crash) via a malformed password packet in the connection protocol.

Affected (1)

Products: Mysql: Community Server

Mysql

1 product

Community Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Mysql Community Server	Up to 5.0.41

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (54)

http://bugs.mysql.com/bug.php?id=28984

Source: cve@mitre.org

http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.html

Source: cve@mitre.org

http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-45.html

Source: cve@mitre.org

Patch

http://lists.mysql.com/announce/470

Source: cve@mitre.org

http://osvdb.org/36732

Source: cve@mitre.org

http://secunia.com/advisories/25301

Source: cve@mitre.org

http://secunia.com/advisories/26073

Source: cve@mitre.org

http://secunia.com/advisories/26430

Source: cve@mitre.org

http://secunia.com/advisories/26498

Source: cve@mitre.org

http://secunia.com/advisories/26621

Source: cve@mitre.org

http://secunia.com/advisories/26710

Source: cve@mitre.org

http://secunia.com/advisories/26987

Source: cve@mitre.org

http://secunia.com/advisories/27155

Source: cve@mitre.org

http://secunia.com/advisories/27823

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200708-10.xml

Source: cve@mitre.org

http://www.debian.org/security/2007/dsa-1413

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2007:177

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2007_19_sr.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2007-0875.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2007-0894.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/473874/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/25017

Source: cve@mitre.org

http://www.securitytracker.com/id?1018629

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/1000/references

Source: cve@mitre.org

https://issues.rpath.com/browse/RPL-1536

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11058

Source: cve@mitre.org

https://usn.ubuntu.com/528-1/

Source: cve@mitre.org

http://bugs.mysql.com/bug.php?id=28984