6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.028 Low
EPSS
Percentile
89.5%
Several minor security issues were found in MySQL:
MySQL allowed remote authenticated users to create or access a database
when the database name differed only in case from a database for which they
had permissions. (CVE-2006-4226)
MySQL evaluated arguments in the wrong security context which allowed
remote authenticated users to gain privileges through a routine that had
been made available using GRANT EXECUTE. (CVE-2006-4227)
MySQL allowed a local user to access a table through a previously created
MERGE table, even after the user’s privileges were revoked for the original
table, which might violate intended security policy. (CVE-2006-4031)
MySQL allowed authenticated users to cause a denial of service (crash) via
a NULL second argument to the str_to_date function. (CVE-2006-3081)
MySQL allowed local authenticated users to bypass logging mechanisms via
SQL queries that contain the NULL character, which were not properly
handled by the mysql_real_query function. (CVE-2006-0903)
Users of MySQL should upgrade to these updated packages, which resolve
these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 4 | x86_64 | mysql-bench | < 5.0.30-1.el4s1.1 | mysql-bench-5.0.30-1.el4s1.1.x86_64.rpm |
RedHat | 4 | i386 | mysql-bench | < 5.0.30-1.el4s1.1 | mysql-bench-5.0.30-1.el4s1.1.i386.rpm |
RedHat | 4 | i386 | mysql-test | < 5.0.30-1.el4s1.1 | mysql-test-5.0.30-1.el4s1.1.i386.rpm |
RedHat | 4 | x86_64 | mysql | < 5.0.30-1.el4s1.1 | mysql-5.0.30-1.el4s1.1.x86_64.rpm |
RedHat | 4 | x86_64 | mysql-devel | < 5.0.30-1.el4s1.1 | mysql-devel-5.0.30-1.el4s1.1.x86_64.rpm |
RedHat | 4 | i386 | mysql | < 5.0.30-1.el4s1.1 | mysql-5.0.30-1.el4s1.1.i386.rpm |
RedHat | 4 | i386 | mysql-server | < 5.0.30-1.el4s1.1 | mysql-server-5.0.30-1.el4s1.1.i386.rpm |
RedHat | 4 | x86_64 | mysql-test | < 5.0.30-1.el4s1.1 | mysql-test-5.0.30-1.el4s1.1.x86_64.rpm |
RedHat | 4 | i386 | mysql-devel | < 5.0.30-1.el4s1.1 | mysql-devel-5.0.30-1.el4s1.1.i386.rpm |
RedHat | 4 | x86_64 | mysql-server | < 5.0.30-1.el4s1.1 | mysql-server-5.0.30-1.el4s1.1.x86_64.rpm |