Multiple vulns in MySQL

Free Web Site - Free Web Space and Site Hosting - Web Hosting - Internet Store and Ecommerce Solution Provider - High Speed Internet

Multiple vulns in MySQL News: ��ͧ��ͧ MySQL
��: Multiple vulns in MySQL
(17 Dec. 2002) ��Դ: ��ͧ��ͧ��
�ѡ�Ԩ�´�ҹ��ʹ��͹��к��ӡ�û�Ѻ��ا��ͧ��ԡ�ðҹ�� MySQL ��ѹ�� ͧ�ҡ�ա�ä鹾��ͺ��ͧ�Ӥѭ�ҧ��ʹ��·��ҧ��ҡ�ӹǹ˹��
��ͺ��ͧ��ö�觼��ء�ء��ҷ��к��ҹ��ū��ѹ��Դ�«��鴷��繷��ѡ�ѹ��Դ�� patch ��ö��ѹ��ŧ��ͧ��ԡ�� (hack) ��ѧ��ͺѭ�յ�ҧ��ͧ��ʼ�ҹ�� ͹�ҡ German firm e-matters

Stefan Esser ��ç�� e-matters �� PHP.net ��ժ�ͧ�� 2 ��Դ�� client library �ͧ MySQL (a heap buffer overflow bug �� glitch ��͹حҵ��¹ '\0' 㹵��˹��ͧ˹��¤��) ��ö�觼��;��पѹ��ѹ��

��͹�� "��ͧ�� 2 ��Դ��ö��Դ��Ẻ DoS (Denial of Service) ��͡��硫դ�ǵ� arbitray code ��㴡��ѧ libmysqlclient"

��ҧ�á�� ա��Ը��͡��ҹ�Ѻ��Һ��ѹ�� 12 �ѹ�Ҥ� 2545 ��ͼ��к��е�ͧ��Ѻ��ا MySQL 3.23.54 ��ժ�ͧ��ҡ��ҹ��´�ǹ��Ŵ��

��ͧ�ҡ PHP ��Сͺ��Ңͧ libmysql �� ѧ��ҡ�ա��ҹ PHP �� е�ͧ�ա��ǹ��֡��´��

�ԧ��Ǣ�ͧ
Multiple MySQL vulnerabilities (advisory by e-matters)
��´��ա� BugTraq ��ǡѺ�ѭ��ҹ�� :
MySQL Memory Corruption Vulnerability
MySQL Password Memory Corruption Vulnerability
MySQL Password Length Account Compromise Vulnerability
MySQL Library Read_One_Row Buffer Overflow Vulnerability
MySQL Library Read_Rows Buffer Overflow Vulnerability

�͡��ҧ�ԧ
http://www.theregister.co.uk/content/55/28607.html

�� ThaiCERT �� 2 ��Ҥ� 2546 15.00
��Ѻ��ا��ش�� ThaiCERT �� 2 ��Ҥ� 2546 15.00

Note: http://thaicert.nectec.or.th/advisory/alert/MySQL.php
�� Crazytop ��

<SCRIPT LANGUAGE=JavaScript>  </SCRIPT>  <script src="/fs_img/js/pt.js" type="text/javascript"></script>   <script type="text/javascript">  </script>  <SCRIPT LANGUAGE=JavaScript>  </SCRIPT> <SCRIPT LANGUAGE=JavaScript1.1>  </SCRIPT> <SCRIPT LANGUAGE=JavaScript>  </SCRIPT> <TABLE ALIGN=CENTER STYLE="clear:both"><TR><TD ALIGN=CENTER>  <SCRIPT LANGUAGE=JavaScript> if(window.OAS_AD) OAS_AD('Bottom'); </SCRIPT>  </TD></TR></TABLE>