Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2002-1374

The COM_CHANGE_USER command in MySQL 3.x before 3.23.54, and 4.x before 4.0.6, allows remote attackers to gain privileges via a brute force attack using a one-character password, which causes MySQL to only compare the provided password against the first character of the real password.

  • Published: Dec 23, 2002
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-1374
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
symantec_veritas / netbackup_global_data_manager 4.5_mp2 4.5_mp2.x
symantec_veritas / netbackup_global_data_manager 4.5_fp2 4.5_fp2.x
symantec_veritas / netbackup_global_data_manager 4.5_fp1 4.5_fp1.x
symantec_veritas / netbackup_global_data_manager 4.5_fp3 4.5_fp3.x
symantec_veritas / netbackup_advanced_reporter 4.5_fp2 4.5_fp2.x
symantec_veritas / netbackup_advanced_reporter 4.5_fp1 4.5_fp1.x
symantec_veritas / netbackup_advanced_reporter 4.5_mp1 4.5_mp1.x
symantec_veritas / netbackup_advanced_reporter 4.5_fp3 4.5_fp3.x
symantec_veritas / netbackup_global_data_manager 4.5_mp1 4.5_mp1.x
symantec_veritas / netbackup_advanced_reporter 4.5_mp3 4.5_mp3.x
symantec_veritas / netbackup_global_data_manager 4.5_mp3 4.5_mp3.x
symantec_veritas / netbackup_advanced_reporter 3.4 3.4.x
symantec_veritas / netbackup_advanced_reporter 4.5 4.5.x
symantec_veritas / netbackup_global_data_manager 4.5 4.5.x
symantec_veritas / netbackup_advanced_reporter 4.5_mp2 4.5_mp2.x
oracle / mysql 3.22.26 3.22.26.x
oracle / mysql 3.22.27 3.22.27.x
oracle / mysql 3.22.28 3.22.28.x
oracle / mysql 3.22.29 3.22.29.x
oracle / mysql 3.22.30 3.22.30.x
oracle / mysql 3.22.32 3.22.32.x
oracle / mysql 3.23.2 3.23.2.x
oracle / mysql 3.23.3 3.23.3.x
oracle / mysql 3.23.4 3.23.4.x
oracle / mysql 3.23.5 3.23.5.x
oracle / mysql 3.23.8 3.23.8.x
oracle / mysql 3.23.9 3.23.9.x
oracle / mysql 3.23.10 3.23.10.x
oracle / mysql 3.23.23 3.23.23.x
oracle / mysql 3.23.24 3.23.24.x
oracle / mysql 3.23.25 3.23.25.x
oracle / mysql 3.23.26 3.23.26.x
oracle / mysql 3.23.27 3.23.27.x
oracle / mysql 3.23.28 3.23.28.x
oracle / mysql 3.23.29 3.23.29.x
oracle / mysql 3.23.30 3.23.30.x
oracle / mysql 3.23.31 3.23.31.x
oracle / mysql 3.23.34 3.23.34.x
oracle / mysql 3.23.36 3.23.36.x
oracle / mysql 3.23.37 3.23.37.x
oracle / mysql 3.23.38 3.23.38.x
oracle / mysql 3.23.39 3.23.39.x
oracle / mysql 3.23.40 3.23.40.x
oracle / mysql 3.23.41 3.23.41.x
oracle / mysql 3.23.42 3.23.42.x
oracle / mysql 3.23.43 3.23.43.x
oracle / mysql 3.23.44 3.23.44.x
oracle / mysql 3.23.45 3.23.45.x
oracle / mysql 3.23.46 3.23.46.x
oracle / mysql 3.23.47 3.23.47.x
oracle / mysql 3.23.48 3.23.48.x
oracle / mysql 3.23.49 3.23.49.x
oracle / mysql 3.23.50 3.23.50.x
oracle / mysql 3.23.51 3.23.51.x
oracle / mysql 3.23.52 3.23.52.x
oracle / mysql 3.23.53 3.23.53.x
oracle / mysql 3.23.53a 3.23.53a.x
oracle / mysql 4.0.0 4.0.0.x
oracle / mysql 4.0.1 4.0.1.x
oracle / mysql 4.0.2 4.0.2.x
oracle / mysql 4.0.3 4.0.3.x
oracle / mysql 4.0.5a 4.0.5a.x