Lucene search
HistoryAug 17, 2012 - 12:55 a.m.
CVE-2009-5026
mysql
remote code execution
cve-2009-5026
nvd
security vulnerability
8.1 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.06 Low
EPSS
Percentile
93.4%
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
References
Related
prion
prion
Sql injection
2012-08-17 00:55:00
ubuntucve
ubuntucve
CVE-2009-5026
2012-08-17 00:00:00
openvas
openvas
Oracle MySQL Server 5.0 < 5.0.93 / 5.1 < 5.1.50 SQL Injection Vulnerability
2020-11-06 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0984-1)
2021-06-09 00:00:00
nessus
nessus
openSUSE Security Update : mysql-cluster (openSUSE-SU-2012:0617-1)
2014-06-13 00:00:00
SuSE 11.1 Security Update : MySQL (SAT Patch Number 6613)
2013-01-25 00:00:00
MySQL Community Server < 5.1.51 Multiple Vulnerabilities
2010-10-05 00:00:00
suse
suse
Security update for MySQL (important)
2012-08-13 19:08:39
8.1 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.06 Low
EPSS
Percentile
93.4%
Related for CVE-2009-5026