CVE-2010-4177
Severity CVSS v4.0:
Pending analysis
Type:
CWE-319
Cleartext Transmission of Sensitive Information
Publication date:
12/11/2019
Last modified:
21/11/2024
Description
mysql-gui-tools (mysql-query-browser and mysql-admin) before 5.0r14+openSUSE-2.3 exposes the password of a user connected to the MySQL server in clear text form via the list of running processes.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:oracle:mysql-gui-tools:*:*:*:*:*:*:*:* | 5.0r14\+opensuse-2.3 (excluding) | |
| cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.securityfocus.com/bid/97959
- https://access.redhat.com/security/cve/cve-2010-4177
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605542
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4177
- https://security-tracker.debian.org/tracker/CVE-2010-4177
- https://www.openwall.com/lists/oss-security/2010/11/16/6
- http://www.securityfocus.com/bid/97959
- https://access.redhat.com/security/cve/cve-2010-4177
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605542
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4177
- https://security-tracker.debian.org/tracker/CVE-2010-4177
- https://www.openwall.com/lists/oss-security/2010/11/16/6