Fix mysql flag truncation

rapid7 / metasploitable3

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

Other

4.78k stars 1.15k forks source link

Fix mysql flag truncation #589

Closed adfoster-r7 closed 1 year ago

adfoster-r7 commented 1 year ago

The unauthenticated mysql flag on the windows box port 3306 is accidentally truncated to 65535 bytes:

      Type | Maximum length
-----------+-------------------------------------
  TINYTEXT |           255 (2 8−1) bytes
      TEXT |        65,535 (216−1) bytes = 64 KiB
MEDIUMTEXT |    16,777,215 (224−1) bytes = 16 MiB
  LONGTEXT | 4,294,967,295 (232−1) bytes =  4 GiB

As a result you only get a partial flag:

adfoster-r7 commented 1 year ago

Looks like this was intended to be truncated by the original developers, and there's an alternative way to get access to the original flag. Closing.