Lucene search

K
ubuntucveUbuntu.comUB:CVE-2009-5026
HistoryAug 17, 2012 - 12:00 a.m.

CVE-2009-5026

2012-08-1700:00:00
ubuntu.com
ubuntu.com
12

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.06 Low

EPSS

Percentile

93.3%

The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x
before 5.1.50, when running in certain slave configurations in which the
slave is running a newer version than the master, allows remote attackers
to execute arbitrary SQL commands via custom comments.

Bugs

Notes

Author Note
jdstrand mysql-cluster-7.0 not supported per server team
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchmysql-dfsg-5.1< 5.1.61-0ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchmysql-5.1< 5.1.61-0ubuntu0.10.10.1UNKNOWN

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.06 Low

EPSS

Percentile

93.3%

Related for UB:CVE-2009-5026