CVE-2008-0226

Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via (1) the ProcessOldClientHello function in handshake.cpp or (2) "input_buffer& operator>>" in yassl_imp.cpp.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
VendorProductVersion
yasslyassl
𝑥
≤ 1.7.5
mysqlmysql
5.0.0
mysqlmysql
5.0.1
mysqlmysql
5.0.2
mysqlmysql
5.0.3
mysqlmysql
5.0.4
mysqlmysql
5.0.5
mysqlmysql
5.0.10
mysqlmysql
5.0.15
mysqlmysql
5.0.16
mysqlmysql
5.0.17
mysqlmysql
5.0.20
mysqlmysql
5.0.24
mysqlmysql
5.0.30
mysqlmysql
5.0.36
mysqlmysql
5.0.44
mysqlmysql
5.0.54
mysqlmysql
5.0.56
mysqlmysql
5.0.60
mysqlmysql
5.0.66
mysqlmysql
5.1.5
oraclemysql
5.0.23
oraclemysql
5.0.25
oraclemysql
5.0.26
oraclemysql
5.0.28
oraclemysql
5.0.30
oraclemysql
5.0.32
oraclemysql
5.0.34
oraclemysql
5.0.36
oraclemysql
5.0.38
oraclemysql
5.0.40
oraclemysql
5.0.41
oraclemysql
5.0.42
oraclemysql
5.0.44
oraclemysql
5.0.45
oraclemysql
5.0.46
oraclemysql
5.0.48
oraclemysql
5.0.50
oraclemysql
5.0.50
oraclemysql
5.0.51
oraclemysql
5.0.52
oraclemysql
5.0.56
oraclemysql
5.0.58
oraclemysql
5.0.60
oraclemysql
5.0.62
oraclemysql
5.0.64
oraclemysql
5.0.66
oraclemysql
5.1
oraclemysql
5.1.1
oraclemysql
5.1.2
oraclemysql
5.1.3
oraclemysql
5.1.4
oraclemysql
5.1.6
oraclemysql
5.1.7
oraclemysql
5.1.8
oraclemysql
5.1.9
oraclemysql
5.1.10
oraclemysql
5.1.11
oraclemysql
5.1.12
oraclemysql
5.1.13
oraclemysql
5.1.14
oraclemysql
5.1.15
oraclemysql
5.1.16
oraclemysql
5.1.17
oraclemysql
5.1.18
oraclemysql
5.1.19
oraclemysql
5.1.20
oraclemysql
5.1.21
oraclemysql
5.1.22
applemac_os_x
10.5.4
debiandebian_linux
5.0
canonicalubuntu_linux
6.06
canonicalubuntu_linux
6.10
canonicalubuntu_linux
7.04
canonicalubuntu_linux
7.10
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
mysql-dfsg-4.1
karmic
dne
jaunty
dne
intrepid
dne
hardy
dne
gutsy
dne
feisty
dne
edgy
ignored
dapper
ignored
mysql-dfsg-5.0
karmic
not-affected
jaunty
not-affected
intrepid
not-affected
hardy
not-affected
gutsy
Fixed 5.0.45-1ubuntu3.3
released
feisty
Fixed 5.0.38-0ubuntu1.4
released
edgy
Fixed 5.0.24a-9ubuntu2.4
released
dapper
Fixed 5.0.22-0ubuntu6.06.8
released
References