Published: 09/08/2006 Updated: 17/12/2019

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

MySQL 4.1 prior to 4.1.21 and 5.0 prior to 5.0.24 allows a local user to access a table through a previously created MERGE table, even after the user's privileges are revoked for the original table, which might violate intended security policy.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle mysql 3.22.30
oracle mysql 3.22.32
oracle mysql 3.23.14
oracle mysql 3.23.15
oracle mysql 3.23.21
oracle mysql 3.23.22
oracle mysql 3.23.28
oracle mysql 3.23.29
oracle mysql 3.23.3
oracle mysql 3.23.36
oracle mysql 3.23.37
oracle mysql 3.23.43
oracle mysql 3.23.44
oracle mysql 3.23.51
oracle mysql 3.23.52
oracle mysql 3.23.57
oracle mysql 3.23.58
oracle mysql 4.0.1
oracle mysql 4.0.10
oracle mysql 4.0.17
oracle mysql 4.0.18
oracle mysql 4.0.25
oracle mysql 4.0.26
oracle mysql 4.0.7
oracle mysql 3.22.27
oracle mysql 3.23.10
oracle mysql 3.23.11
oracle mysql 3.23.18
oracle mysql 3.23.19
oracle mysql 3.23.25
oracle mysql 3.23.26
oracle mysql 3.23.32
oracle mysql 3.23.33
oracle mysql 3.23.4
oracle mysql 3.23.40
oracle mysql 3.23.47
oracle mysql 3.23.48
oracle mysql 3.23.54
oracle mysql 3.23.54a
oracle mysql 3.23.7
oracle mysql 3.23.8
oracle mysql 4.0.12
oracle mysql 4.0.13
oracle mysql 4.0.20
oracle mysql 4.0.21
oracle mysql 4.0.4
oracle mysql 4.0.5
oracle mysql 4.0.9
mysql mysql 4.1.0
oracle mysql 4.1.11
mysql mysql 4.1.12
mysql mysql 4.1.15
oracle mysql 4.1.16
oracle mysql 4.1.3
oracle mysql 4.1.0
oracle mysql 4.1.1
mysql mysql 4.1.13
mysql mysql 4.1.14
oracle mysql 4.1.19
mysql mysql 4.1.2
oracle mysql 4.1.7
mysql mysql 4.1.8
mysql mysql 5.0.10
mysql mysql 5.0.16
mysql mysql 5.0.17
oracle mysql 5.0.21
mysql mysql 5.0.5
oracle mysql 3.22.28
oracle mysql 3.22.29
oracle mysql 3.23.12
oracle mysql 3.23.13
oracle mysql 3.23.2
oracle mysql 3.23.20
oracle mysql 3.23.27
oracle mysql 3.23.34
oracle mysql 3.23.35
oracle mysql 3.23.41
oracle mysql 3.23.42
oracle mysql 3.23.49
oracle mysql 3.23.5
oracle mysql 3.23.50
oracle mysql 3.23.55
oracle mysql 3.23.56
oracle mysql 3.23.9
oracle mysql 4.0.0
oracle mysql 4.0.14
oracle mysql 4.0.15
oracle mysql 4.0.16
oracle mysql 4.0.23
oracle mysql 4.0.24
oracle mysql 4.0.5a
oracle mysql 4.0.6
oracle mysql 4.1.4
oracle mysql 5.0.13
oracle mysql 5.0.14
oracle mysql 5.0.19
mysql mysql 5.0.3
oracle mysql 5.0.3
oracle mysql 5.0.7
oracle mysql 5.0.8
oracle mysql 4.1.17
oracle mysql 4.1.18
oracle mysql 4.1.5
oracle mysql 4.1.6
oracle mysql 5.0.0
mysql mysql 5.0.1
mysql mysql 5.0.15
mysql mysql 5.0.2
mysql mysql 5.0.20
mysql mysql 5.0.4
oracle mysql 5.0.9
oracle mysql 3.23
oracle mysql 3.23.0
oracle mysql 3.23.1
oracle mysql 3.23.16
oracle mysql 3.23.17
oracle mysql 3.23.23
oracle mysql 3.23.24
oracle mysql 3.23.30
oracle mysql 3.23.31
oracle mysql 3.23.38
oracle mysql 3.23.39
oracle mysql 3.23.45
oracle mysql 3.23.46
oracle mysql 3.23.53
oracle mysql 3.23.53a
oracle mysql 3.23.59
oracle mysql 3.23.6
oracle mysql 4.0.11
oracle mysql 4.0.19
oracle mysql 4.0.2
oracle mysql 4.0.27
oracle mysql 4.0.3
oracle mysql 4.0.8
mysql mysql 4.1.10
oracle mysql 4.1.2
oracle mysql 4.1.20
mysql mysql 4.1.3
oracle mysql 4.1.9
oracle mysql 5.0.11
oracle mysql 5.0.12
oracle mysql 5.0.18
oracle mysql 5.0.22
mysql mysql 5.0.22.1.0.1
mysql mysql 5.0.5.0.21
oracle mysql 5.0.6

Dmitri Lenev discovered that arguments of setuid SQL functions were evaluated in the security context of the functions’ definer instead of its caller An authenticated user with the privilege to call such a function could exploit this to execute arbitrary statements with the privileges of the definer of that function (CVE-2006-4227) ...

Get Started

CVE-2006-4031

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect