Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mysql mysql 5.0.44 vulnerabilities and exploits

(subscribe to this query)
4
CVSSv2
CVE-2007-3781
MySQL Community Server prior to 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.
Mysql Community Server 5.0.41Mysql Community Server 5.0.44
3.5
CVSSv2
CVE-2007-3782
MySQL Community Server prior to 5.0.45 allows remote authenticated users to gain update privileges for a table in another database via a view that refers to this external table.
Mysql Community Server 5.0.44Mysql Community Server 5.0.41
7.1
CVSSv2
CVE-2007-5969
MySQL Community Server 5.0.x prior to 5.0.51, Enterprise Server 5.0.x prior to 5.0.52, Server 5.1.x prior to 5.1.23, and Server 6.0.x prior to 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated u...
Mysql Mysql Server 6.0Mysql Mysql Server 6.0.3Mysql Mysql Server 6.0.1Mysql Mysql Server 5.1.22Mysql Mysql Server 6.0.2Mysql Community Server 5.0.45Mysql Community Server 5.0.41Mysql Community Server 5.0.44Mysql Community ServerMysql Mysql Enterprise Server 5.0.50
2.6
CVSSv2
CVE-2008-4456
Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 up to and including 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows malicious users to inject arbitrary web script or HTML by placing it ...
Oracle Mysql 5.0.32Oracle Mysql 5.0.33Oracle Mysql 5.0.45Oracle Mysql 5.0.67Mysql Mysql 5.0.30Oracle Mysql 5.0.30Mysql Mysql 5.0.36Oracle Mysql 5.0.37Oracle Mysql 5.0.41Oracle Mysql 5.0.42Mysql Mysql 5.0.44Oracle Mysql 5.0.26Oracle Mysql 5.0.27Oracle Mysql 5.0.38Mysql Mysql 5.0.4
4.6
CVSSv2
CVE-2008-4098
MySQL prior to 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables cre...
Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 9.10Debian Debian Linux 5.0Mysql Mysql 5.0.3Mysql Mysql 5.0.4Mysql Mysql 5.0.20Oracle Mysql 5.0.26Oracle Mysql 5.0.28Oracle Mysql 5.0.36Oracle Mysql 5.0.45Oracle Mysql 5.0.46Oracle Mysql 5.0.52Mysql Mysql 5.0.54Mysql Mysql 5.0.5Mysql Mysql 5.0.15Mysql Mysql 5.0.30Oracle Mysql 5.0.30Mysql Mysql 5.0.1
7.5
CVSSv2
CVE-2008-0226
Multiple buffer overflows in yaSSL 1.7.5 and previous versions, as used in MySQL and possibly other products, allow remote malicious users to execute arbitrary code via (1) the ProcessOldClientHello function in handshake.cpp or (2) "input_buffer& operator>>" i...
Yassl YasslMysql Mysql 5.0.0Mysql Mysql 5.0.1Mysql Mysql 5.0.2Mysql Mysql 5.0.3Mysql Mysql 5.0.16Mysql Mysql 5.0.17Mysql Mysql 5.0.20Oracle Mysql 5.0.32Oracle Mysql 5.0.34Mysql Mysql 5.0.36Oracle Mysql 5.0.51Oracle Mysql 5.0.52Oracle Mysql 5.1.1Oracle Mysql 5.1.2Oracle Mysql 5.1.3Oracle Mysql 5.1.4Oracle Mysql 5.1.17Oracle Mysql 5.1.18Oracle Mysql 5.1.19Oracle Mysql 5.1.20Mysql Mysql 5.0.10
4
CVSSv2
CVE-2010-3677
Oracle MySQL 5.1 prior to 5.1.49 and 5.0 prior to 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a join query that uses a table with a unique SET column.
Mysql MysqlOracle Mysql 5.1.47Oracle Mysql 5.1.42Oracle Mysql 5.1.41Mysql Mysql 5.1.31Mysql Mysql 5.1.32Mysql Mysql 5.1.37Oracle Mysql 5.1.38Oracle Mysql 5.1.20Oracle Mysql 5.1.28Mysql Mysql 5.1.23Oracle Mysql 5.1.10Oracle Mysql 5.1.17Oracle Mysql 5.1.15Oracle Mysql 5.1.43Oracle Mysql 5.1.33Mysql Mysql 5.1.34Oracle Mysql 5.1.35Oracle Mysql 5.1.36Oracle Mysql 5.1.22Oracle Mysql 5.1.25Oracle Mysql 5.1.2
4
CVSSv2
CVE-2010-3682
Oracle MySQL 5.1 prior to 5.1.49 and 5.0 prior to 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer d...
Oracle Mysql 5.1.44Oracle Mysql 5.1.43Oracle Mysql 5.1.30Oracle Mysql 5.1.33Oracle Mysql 5.1.34Mysql Mysql 5.1.34Oracle Mysql 5.1.35Oracle Mysql 5.1.21Oracle Mysql 5.1.22Oracle Mysql 5.1.24Oracle Mysql 5.1.25Oracle Mysql 5.1.14Oracle Mysql 5.1.11Oracle Mysql 5.1.46Oracle Mysql 5.1.45Oracle Mysql 5.1.40Oracle Mysql 5.1.4Oracle Mysql 5.1.37Oracle Mysql 5.1.31Mysql Mysql 5.1.23Oracle Mysql 5.1.23Oracle Mysql 5.1.26
4
CVSSv2
CVE-2008-3963
MySQL 5.0 prior to 5.0.66, 5.1 prior to 5.1.26, and 6.0 prior to 6.0.6 does not properly handle a b'' (b single-quote single-quote) token, aka an empty bit-string literal, which allows remote malicious users to cause a denial of service (daemon crash) by using this toke...
Mysql Mysql 5.0.0Mysql Mysql 5.0.15Mysql Mysql 5.0.2Oracle Mysql 5.0.23Oracle Mysql 5.0.25Oracle Mysql 5.0.26Oracle Mysql 5.0.33Oracle Mysql 5.0.42Oracle Mysql 5.0.38Mysql Mysql 5.0.54Oracle Mysql 5.0.52Oracle Mysql 5.1.3Oracle Mysql 5.1.4Oracle Mysql 5.1.12Oracle Mysql 5.1.17Oracle Mysql 5.1.21Oracle Mysql 5.1.22Oracle Mysql 6.0.2Oracle Mysql 6.0.1Oracle Mysql 5.0.0Mysql Mysql 5.0.10Mysql Mysql 5.0.22.1.0.1
4
CVSSv2
CVE-2009-4019
mysqld in MySQL 5.0.x prior to 5.0.88 and 5.1.x prior to 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, ...
Oracle Mysql 5.0.25Mysql Mysql 5.0.24Oracle Mysql 5.0.0Oracle Mysql 5.0.11Mysql Mysql 5.0.30Oracle Mysql 5.0.42Oracle Mysql 5.0.32Oracle Mysql 5.0.51Oracle Mysql 5.0.26Oracle Mysql 5.0.33Mysql Mysql 5.0.66Oracle Mysql 5.0.7Mysql Mysql 5.1.23Mysql Mysql 5.1.5Oracle Mysql 5.1.13Oracle Mysql 5.1.14Oracle Mysql 5.1.30Oracle Mysql 5.1Oracle Mysql 5.1.18Oracle Mysql 5.1.19Mysql Mysql 5.0.2Mysql Mysql 5.0.20
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook