N/A

Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local users to cause a denial of service (application crash) via unspecified vectors, which triggers the overflow when the convert_dirname function is called. NOTE: the vendor has disputed this issue via e-mail to CVE, saying that it is only exploitable when the user has access to the configuration file or the Instance Manager daemon. Due to intended functionality, this level of access would already allow the user to disrupt program operation, so this does not cross security boundaries and is not a vulnerability

N/A

N/A

MySQL ‘nstance_options.cc‘的Instance_options::complete_initialization 函数缓冲区错误漏洞

**有争议** MySQL 5.0.23之前版本及5.1.12 之前的5.1版本中的instance_options.cc的Instance_options::complete_initialization 函数存在Off-by-one(大小差一)缓冲区漏洞。本地用户可以借助可在调用convert_dirname函数时触发溢出的未明向量，引起拒绝服务(应用程序崩溃)。注:厂商在发给CVE的电子邮件中对此问题提出反驳,表示只有在用户已经访问配置文件或Instance Manager daemon程序时才能利

N/A

N/A