Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:19606
HistoryMay 13, 2010 - 12:00 a.m.

MySQL COM_FIELD_LIST命令绕过权限检查漏洞

2010-05-1300:00:00
Root
www.seebug.org
144

0.004 Low

EPSS

Percentile

71.9%

JSON

BUGTRAQ ID: 40109
CVE ID: CVE-2010-1848

MySQL是一款使用非常广泛的开放源代码关系数据库系统,拥有各种平台的运行版本。

MySQL在处理COM_FIELD_LIST命令的表格名称参数时没有正确的执行权限检查,对一个表格拥有DELETE或SELECT权限的认证用户可以读取或删除其他表格的内容。

MySQL 5.1/5.0
厂商补丁:

Oracle

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://bugs.mysql.com/bug.php?id=53371

Related

prion 1
veracode 1
cve 1
ubuntucve 1
openvas 37
redhat 2
centos 2
nessus 25
oraclelinux 2
securityvulns 4
fedora 6
debian 2
osv 1
ubuntu 2
gentoo 1
prion
prion
Directory traversal
2010-06-08 00:30:00
veracode
veracode
Directory Traversal
2020-04-10 00:45:08
cve
cve
CVE-2010-1848
2010-06-08 00:30:00
ubuntucve
ubuntucve
CVE-2010-1848
2010-05-21 00:00:00
openvas
openvas
MySQL < 5.1.47 Multiple Vulnerabilities
2010-05-27 00:00:00
Mandriva Update for mysql MDVSA-2010:107 (mysql)
2010-05-28 00:00:00
RedHat Update for mysql RHSA-2010:0442-01
2010-05-28 00:00:00
redhat
redhat
(RHSA-2010:0824) Moderate: mysql security update
2010-11-03 00:00:00
(RHSA-2010:0442) Important: mysql security update
2010-05-26 00:00:00
centos
centos
mysql security update
2010-11-05 14:22:54
mysql security update
2010-05-28 10:47:08
nessus
nessus
MySQL Community Server < 5.1.47 / 5.0.91 Multiple Vulnerabilities
2010-05-24 00:00:00
Oracle Linux 5 : mysql (ELSA-2010-0442)
2013-07-12 00:00:00
CentOS 4 : mysql (CESA-2010:0824)
2010-11-24 00:00:00
oraclelinux
oraclelinux
mysql security update
2010-05-26 00:00:00
mysql security update
2010-11-03 00:00:00
securityvulns
securityvulns
MySQL multiple security vulnerabilities
2010-05-27 00:00:00
[ MDVSA-2010:107 ] mysql
2010-05-27 00:00:00
Apple Mac OS X and QuickTime multiple security vulnerabilities
2013-11-18 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: mysql-5.1.47-1.fc13
2010-06-07 22:30:37
[SECURITY] Fedora 13 Update: mysql-5.1.48-2.fc13
2010-07-27 02:41:30
[SECURITY] Fedora 12 Update: mysql-5.1.47-1.fc12
2010-06-07 22:28:04
debian
debian
[SECURITY] [DSA 2057-1] New mysql-dfsg-5.0 packages fix several vulnerabilities
2010-06-07 13:23:07
[SECURITY] [DSA 2057-1] New mysql-dfsg-5.0 packages fix several vulnerabilities
2010-06-07 13:23:07
osv
osv
mysql-dfsg-5.0 - several
2010-06-07 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2010-06-09 00:00:00
MySQL vulnerabilities
2012-03-12 00:00:00
gentoo
gentoo
MySQL: Multiple vulnerabilities
2012-01-05 00:00:00

0.004 Low

EPSS

Percentile

71.9%

JSON
Related for SSV:19606
prion1veracode1cve1ubuntucve1openvas37redhat2centos2nessus25oraclelinux2securityvulns4fedora6debian2osv1ubuntu2gentoo1