Vulnerabilities > Oracle > Mysql > 3.23
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-10-02 | CVE-2001-1255 | WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database. | 4.6 |
| 2001-06-27 | CVE-2001-0407 | Symbolic Link File Overwriting vulnerability in MySQL Root Operation Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. | 4.6 |
| 2001-02-09 | CVE-2001-1454 | Unspecified vulnerability in Oracle Mysql Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database request. | 7.5 |
| 2001-01-23 | CVE-2001-1274 | Unspecified vulnerability in Oracle Mysql Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges. | 7.5 |
| 2001-01-19 | CVE-2001-1275 | Unspecified vulnerability in Oracle Mysql MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking. | 7.2 |
| 2000-12-19 | CVE-2000-0981 | Unspecified vulnerability in Oracle Mysql MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password. | 7.2 |