CVE-2008-0226

N/A Unknown

Published: January 10, 2008 Modified: April 23, 2026

Description

Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other products, allow remote attackers to execute arbitrary code via (1) the ProcessOldClientHello function in handshake.cpp or (2) "input_buffer& operator>>" in yassl_imp.cpp.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://bugs.mysql.com/33814

Source: cve@mitre.org

Permissions Required

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-23.html

Source: cve@mitre.org

Not Applicable

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

Source: cve@mitre.org

Mailing List Third Party Advisory

http://secunia.com/advisories/28324

Source: cve@mitre.org

Not Applicable

http://secunia.com/advisories/28419

Source: cve@mitre.org

Not Applicable

http://secunia.com/advisories/28597

Source: cve@mitre.org

Not Applicable

http://secunia.com/advisories/29443

Source: cve@mitre.org

Not Applicable

http://secunia.com/advisories/32222

Source: cve@mitre.org

Not Applicable

http://securityreason.com/securityalert/3531

Source: cve@mitre.org

Third Party Advisory

http://support.apple.com/kb/HT3216

Source: cve@mitre.org

Third Party Advisory

http://www.debian.org/security/2008/dsa-1478

Source: cve@mitre.org

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2008:150

Source: cve@mitre.org

Broken Link

http://www.securityfocus.com/archive/1/485810/100/0/threaded

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.securityfocus.com/archive/1/485811/100/0/threaded

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.securityfocus.com/bid/27140

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.securityfocus.com/bid/31681

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.ubuntu.com/usn/usn-588-1

Source: cve@mitre.org

Third Party Advisory

http://www.vupen.com/english/advisories/2008/0560/references

Source: cve@mitre.org

Permissions Required

http://www.vupen.com/english/advisories/2008/2780

Source: cve@mitre.org

Permissions Required

https://exchange.xforce.ibmcloud.com/vulnerabilities/39429

Source: cve@mitre.org

VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/39431

Source: cve@mitre.org

VDB Entry

http://bugs.mysql.com/33814