3.6
CVSSv2

CVE-2006-4226

Published: 18/08/2006 Updated: 17/12/2019
CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9
VMScore: 320
Vector: AV:N/AC:H/Au:S/C:P/I:P/A:N

Vulnerability Summary

MySQL prior to 4.1.21, 5.0 prior to 5.0.25, and 5.1 prior to 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the database name differs only in case from a database for which they have permissions.

Vulnerable Product Search on Vulmon Subscribe to Product

mysql mysql 4.1.0

mysql mysql 4.1.2

mysql mysql 4.1.3

mysql mysql 4.1.8

mysql mysql 4.1.10

mysql mysql 4.1.12

mysql mysql 4.1.13

mysql mysql 4.1.14

mysql mysql 4.1.15

mysql mysql 5.0.0

mysql mysql 5.0.1

mysql mysql 5.0.2

mysql mysql 5.0.3

mysql mysql 5.0.4

mysql mysql 5.0.5

mysql mysql 5.0.5.0.21

mysql mysql 5.0.10

mysql mysql 5.0.15

mysql mysql 5.0.16

mysql mysql 5.0.17

mysql mysql 5.0.20

mysql mysql 5.0.22.1.0.1

mysql mysql 5.1.5

oracle mysql 4.0.0

oracle mysql 4.0.1

oracle mysql 4.0.2

oracle mysql 4.0.3

oracle mysql 4.0.4

oracle mysql 4.0.5

oracle mysql 4.0.5a

oracle mysql 4.0.6

oracle mysql 4.0.7

oracle mysql 4.0.8

oracle mysql 4.0.9

oracle mysql 4.0.10

oracle mysql 4.0.11

oracle mysql 4.0.12

oracle mysql 4.0.13

oracle mysql 4.0.14

oracle mysql 4.0.15

oracle mysql 4.0.16

oracle mysql 4.0.17

oracle mysql 4.0.18

oracle mysql 4.0.19

oracle mysql 4.0.20

oracle mysql 4.0.21

oracle mysql 4.0.23

oracle mysql 4.0.24

oracle mysql 4.0.25

oracle mysql 4.0.26

oracle mysql 4.0.27

oracle mysql 4.1.0

oracle mysql 4.1.1

oracle mysql 4.1.2

oracle mysql 4.1.3

oracle mysql 4.1.4

oracle mysql 4.1.5

oracle mysql 4.1.6

oracle mysql 4.1.7

oracle mysql 4.1.9

oracle mysql 4.1.11

oracle mysql 4.1.16

oracle mysql 4.1.17

oracle mysql 4.1.18

oracle mysql 4.1.19

oracle mysql 4.1.20

oracle mysql 4.1.21

oracle mysql 5.0.0

oracle mysql 5.0.3

oracle mysql 5.0.6

oracle mysql 5.0.7

oracle mysql 5.0.8

oracle mysql 5.0.9

oracle mysql 5.0.11

oracle mysql 5.0.12

oracle mysql 5.0.13

oracle mysql 5.0.14

oracle mysql 5.0.18

oracle mysql 5.0.19

oracle mysql 5.0.21

oracle mysql 5.0.22

oracle mysql 5.1.1

oracle mysql 5.1.2

oracle mysql 5.1.3

oracle mysql 5.1.4

oracle mysql 5.1.6

oracle mysql 5.1.7

oracle mysql 5.1.8

oracle mysql 5.1.9

oracle mysql 5.1.10

oracle mysql 5.1.11

Vendor Advisories

Several local vulnerabilities have been discovered in the MySQL database server The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-4226 Michal Prokopiuk discovered that remote authenticated users are permitted to create and access a database if the lowercase spelling is the same as one they ha ...

Github Repositories

Code used to CVE check Alpine based images

CVE Scanning of Alpine base images using Multi Stage builds in Docker 1705 The tl;dr of this post is that I want to scan my Alpine based images locally for vulnerabilities before pushing the image to an online registry Why? Well I think it makes sense that developers have the option of checking for CVE's locally and at build time They may choose to ignore the results b