Stack-based buffer overflow in the php_mysqlnd_auth_write function in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) username or (2) database name argument to the (a) mysql_connect or (b) mysqli_connect function.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-08-20T19:00:00
Updated: 2024-08-07T02:55:46.683Z
Reserved: 2010-08-20T00:00:00
Link: CVE-2010-3064
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-08-20T20:00:03.107
Modified: 2010-12-07T06:50:29.107
Link: CVE-2010-3064
Redhat