Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MySQL Use of Externally-Controlled Format String Vulnerability - CVE-2006-3469 - Vulnerability Database
MySQL

MySQL Use of Externally-Controlled Format String Vulnerability - CVE-2006-3469

Medium
Reference: CVE-2006-3469
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2006-3469
Title: MySQL Use of Externally-Controlled Format String Vulnerability
Overview:

Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function which is later used in a formatted print call to display the error message.