Vulnerability Details CVE-2004-0931
MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTTP request to webdbm with high ASCII values in the Server field, which triggers an assert error in the IsAscii7 function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.9%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.idefense.com/application/poi/display?id=150&type=vulnerabilities&flashstatus=false
- http://www.osvdb.org/10532
- http://www.secunia.com/advisories/12756
- http://www.securityfocus.com/bid/11346
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17633
- http://www.idefense.com/application/poi/display?id=150&type=vulnerabilities&flashstatus=false
- http://www.osvdb.org/10532
- http://www.secunia.com/advisories/12756
- http://www.securityfocus.com/bid/11346
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17633
Products affected by CVE-2004-0931
-
cpe:2.3:a:mysql:maxdb:7.5.00.08
-
cpe:2.3:a:mysql:maxdb:7.5.00.11
-
cpe:2.3:a:mysql:maxdb:7.5.00.12
-
cpe:2.3:a:mysql:maxdb:7.5.00.14
-
cpe:2.3:a:mysql:maxdb:7.5.00.15
-
cpe:2.3:a:mysql:maxdb:7.5.00.16