CVE-2002-1809

The default configuration of the Windows binary release of MySQL 3.23.2 through 3.23.52 has a NULL root password, which could allow remote attackers to gain unauthorized root access to the MySQL database.

Published: Dec 31, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-1809
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / mysql	3.23.2	3.23.2.x
oracle / mysql	3.23.3	3.23.3.x
oracle / mysql	3.23.4	3.23.4.x
oracle / mysql	3.23.5	3.23.5.x
oracle / mysql	3.23.8	3.23.8.x
oracle / mysql	3.23.9	3.23.9.x
oracle / mysql	3.23.10	3.23.10.x
oracle / mysql	3.23.23	3.23.23.x
oracle / mysql	3.23.24	3.23.24.x
oracle / mysql	3.23.25	3.23.25.x
oracle / mysql	3.23.26	3.23.26.x
oracle / mysql	3.23.27	3.23.27.x
oracle / mysql	3.23.28	3.23.28.x
oracle / mysql	3.23.29	3.23.29.x
oracle / mysql	3.23.30	3.23.30.x
oracle / mysql	3.23.31	3.23.31.x
oracle / mysql	3.23.34	3.23.34.x
oracle / mysql	3.23.36	3.23.36.x
oracle / mysql	3.23.37	3.23.37.x
oracle / mysql	3.23.38	3.23.38.x
oracle / mysql	3.23.39	3.23.39.x
oracle / mysql	3.23.40	3.23.40.x
oracle / mysql	3.23.41	3.23.41.x
oracle / mysql	3.23.42	3.23.42.x
oracle / mysql	3.23.43	3.23.43.x
oracle / mysql	3.23.44	3.23.44.x
oracle / mysql	3.23.45	3.23.45.x
oracle / mysql	3.23.46	3.23.46.x
oracle / mysql	3.23.47	3.23.47.x
oracle / mysql	3.23.48	3.23.48.x
oracle / mysql	3.23.49	3.23.49.x
oracle / mysql	3.23.50	3.23.50.x
oracle / mysql	3.23.51	3.23.51.x
oracle / mysql	3.23.52	3.23.52.x

Vulnerability Database

289,599

CVE-2002-1809