What is CVE-2001-1274?

CVE-2001-1274 is a high-severity software vulnerability with a CVSS score of 7.5. Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.

Is CVE-2001-1274 being actively exploited?

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 5%.

What products does CVE-2001-1274 affect?

Tracked products affected include MySQL. Check the version you run to see whether it is affected.

How do I fix CVE-2001-1274?

Apply the vendor fix promptly. An official patch or advisory is available. Upgrade affected products to a fixed version.

← All products

CVE-2001-1274

HIGH severity · CVSS 7.5

7.5CVSS HIGH

Summary

Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges required—

User interaction—

Confidentiality impact—

Integrity impact—

Availability impact—

Exploit probability (EPSS)5%

AV:N/AC:L/Au:N/C:P/I:P/A:P

Affected products we track (1)

MySQL

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Official patch: http://www.debian.org/security/2001/dsa-013 ↗

Additional information

NVD record
http://www.debian.org/security/2001/dsa-013Patch
http://www.calderasystems.com/support/security/advisories/CSSA-2001-006.0.txtAdvisory
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000375
http://marc.info/?l=bugtraq&m=98089552030459&w=2
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-014.php3
http://www.mysql.com/documentation/mysql/bychapter/manual_News.html#News-3.23.3
http://www.redhat.com/support/errata/RHSA-2001-003.html