Vulnerabilities > Oracle > Mysql > 4.0.9

DATE CVE VULNERABILITY TITLE RISK
2004-05-04 CVE-2004-0381 mysqlbug in MySQL allows local users to overwrite arbitrary files via a symlink attack on the failed-mysql-bugreport temporary file.
local
low complexity
mysql oracle
2.1
2.1
2003-12-31 CVE-2003-1480 Cryptographic Issues vulnerability in multiple products
MySQL 3.20 through 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for attackers to decrypt the password via brute force methods.
network
mysql oracle CWE-310
4.3
4.3
2003-12-31 CVE-2003-1331 Buffer Overrun vulnerability in MySQL libmysqlclient Library mysql_real_connect()
Stack-based buffer overflow in the mysql_real_connect function in the MySql client library (libmysqlclient) 4.0.13 and earlier allows local users to execute arbitrary code via a long socket name, a different vulnerability than CVE-2001-1453.
network
high complexity
oracle
4.0
4.0
2003-09-22 CVE-2003-0780 Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.
network
low complexity
mysql oracle conectiva
critical
 9.0
9.0