CVSS: 9.8EPSS: 1%CPEs: 95EXPL: 3CVE-2006-4226 – mysql-server create database privilege escalation
https://notcve.org/view.php?id=CVE-2006-4226
18 Aug 2006 — MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the database name differs only in case from a database for which they have permissions. MySQL anteriores a 4.1.21, 5.0 anterior a 5.0.25, y 5.1 anteriores a 5.1.12, cuando se ejecutan en sistemas de fichero sensibles al uso de mayúsculas o minúscular, permite a usuarios autenticados remotamente crear o acceder a una base de datos cuando ... • http://bugs.mysql.com/bug.php?id=17647 •
CVSS: 9.1EPSS: 0%CPEs: 151EXPL: 1CVE-2006-4031 – MySQL improper permission revocation
https://notcve.org/view.php?id=CVE-2006-4031
09 Aug 2006 — MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a table through a previously created MERGE table, even after the user's privileges are revoked for the original table, which might violate intended security policy. MySQL 4.1 anterior a 4.1.21 y 5.0 anterior a 5.0.24 permite a usuarios locales acceder a una tabla a través de una tabla MERGE previamente creada, incluso después de que los privilegios del usuario han sido revocados para la tabla original, lo cual podría violar la polít... • http://bugs.mysql.com/bug.php?id=15195 •
CVSS: 6.5EPSS: 90%CPEs: 25EXPL: 1CVE-2006-3469 – MySQL 4.x/5.x - Server Date_Format Denial of Service
https://notcve.org/view.php?id=CVE-2006-3469
18 Jul 2006 — Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted print call to display the error message. Vulnerabilidad de cadena de formato en time.cc de MySQL Server 4.1 anterior a 4.1.21 y 5.0 anterior al 1 de abril de 2006 permite a usuarios autenticados remotamente provocar... • https://www.exploit-db.com/exploits/28234 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 5.5EPSS: 0%CPEs: 34EXPL: 0CVE-2006-3486
https://notcve.org/view.php?id=CVE-2006-3486
10 Jul 2006 — Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local users to cause a denial of service (application crash) via unspecified vectors, which triggers the overflow when the convert_dirname function is called. NOTE: the vendor has disputed this issue via e-mail to CVE, saying that it is only exploitable when the user has access to the configuration file or the Instance Ma... • http://bugs.mysql.com/bug.php?id=20622 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 35%CPEs: 14EXPL: 2CVE-2006-3081 – MySQL Server 4/5 - Str_To_Date Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-3081
19 Jun 2006 — mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function. mysqld en MySQL v4.1.x antes de v4.1.18, v5.0.x antes de v5.0.19, y v5.1.x antes de v5.1.6 permite causar una denegación de servicio (caída del demonio) a usuarios remotos autorizados a través de un segundo argumento nulo para la función STR_TO_DATE. • https://www.exploit-db.com/exploits/28026 •
CVSS: 9.8EPSS: 0%CPEs: 42EXPL: 0CVE-2006-2753
https://notcve.org/view.php?id=CVE-2006-2753
01 Jun 2006 — SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properly handled when the mysql_real_escape function is used to escape the input. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=369735 •
CVSS: 7.5EPSS: 52%CPEs: 71EXPL: 0CVE-2006-1517
https://notcve.org/view.php?id=CVE-2006-1517
05 May 2006 — sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error message. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=365939 •
CVSS: 9.8EPSS: 55%CPEs: 22EXPL: 1CVE-2006-1518 – MySQL 5.0.20 - COM_TABLE_DUMP Memory Leak/Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-1518
05 May 2006 — Buffer overflow in the open_table function in sql_base.cc in MySQL 5.0.x up to 5.0.20 might allow remote attackers to execute arbitrary code via crafted COM_TABLE_DUMP packets with invalid length values. • https://www.exploit-db.com/exploits/1741 •
CVSS: 9.1EPSS: 93%CPEs: 71EXPL: 1CVE-2006-1516 – MySQL 4.1.18/5.0.20 - Local/Remote Information Leakage
https://notcve.org/view.php?id=CVE-2006-1516
05 May 2006 — The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read. • https://www.exploit-db.com/exploits/1742 •
CVSS: 9.1EPSS: 0%CPEs: 133EXPL: 1CVE-2006-0903 – MySQL 5.0.18 - Query Logging Bypass
https://notcve.org/view.php?id=CVE-2006-0903
27 Feb 2006 — MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function. NOTE: this issue was originally reported for the mysql_query function, but the vendor states that since mysql_query expects a null character, this is not an issue for mysql_query. • https://www.exploit-db.com/exploits/27326 •