Views : 297 Clicks : 22

A serious security vulnerability found in MySQL/MariaDB

By nisha_singh via pixelstech.net
Submitted On June 12, 2012

When a user connects to MariaDB/MySQL, a token (SHA over a password and a random scramble string) is calculated and compared with the expected value. Because of incorrect casting, it might've happened that the token and the expected value were considered equal, even if the memcmp() returned a non-zero value. In this case MySQL/MariaDB would think that the password is correct, even while it is not

  0 Comments   Tags: Tutorials,  Security,  Database

Freshly Arrived

1. Replicate or copy a database table with PHP
2. Laravel 4 tutorial - simple website with backend - Part 2
3. How to disable the WordPress plugin and theme editor
4. Replace last occurance of a String
5. jQuery Migrate 1.2.1 Released

Getting Hotter