CVE-2002-1374

Impact:
Important
Public Date:
2002-12-12
Bugzilla:
1616895: CVE-2002-1374 security flaw

The MITRE CVE dictionary describes this issue as:

The COM_CHANGE_USER command in MySQL 3.x before 3.23.54, and 4.x before 4.0.6, allows remote attackers to gain privileges via a brute force attack using a one-character password, which causes MySQL to only compare the provided password against the first character of the real password.

Find out more about CVE-2002-1374 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Linux 7.3 RHSA-2002:288 2003-01-15
Red Hat Linux 7.1 RHSA-2002:288 2003-01-15
Red Hat Linux 7.1 RHSA-2003:166 2003-05-15
Red Hat Linux 8.0 RHSA-2002:288 2003-01-15
Red Hat Linux 7.0 RHSA-2002:288 2003-01-15
Red Hat Linux 7.2 RHSA-2002:288 2003-01-15
Red Hat Enterprise Linux 2.1 RHSA-2002:289 2003-01-06

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.