Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv2

CVE-2006-4227

Published: 18/08/2006 Updated: 17/12/2019
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
VMScore: 655
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Oracle

Vulnerability Summary

MySQL prior to 5.0.25 and 5.1 prior to 5.1.12 evaluates arguments of suid routines in the security context of the routine's definer instead of the routine's caller, which allows remote authenticated users to gain privileges through a routine that has been made available using GRANT EXECUTE.

Vulnerable Product Search on Vulmon Subscribe to Product

oracle mysql 5.0.0

mysql mysql 5.0.1

mysql mysql 5.0.24

mysql mysql 5.0.3

mysql mysql 5.0.4

mysql mysql 5.0.22.1.0.1

oracle mysql 5.1.10

mysql mysql 5.1.5

mysql mysql 5.0.2

mysql mysql 5.0.20

oracle mysql 5.1.6

oracle mysql 5.1.9

Vendor Advisories

Ubuntu Security Notice: mysql-dfsg-5.0 vulnerabilities
Dmitri Lenev discovered that arguments of setuid SQL functions were evaluated in the security context of the functions’ definer instead of its caller An authenticated user with the privilege to call such a function could exploit this to execute arbitrary statements with the privileges of the definer of that function (CVE-2006-4227) ...

Exploits

Exploit DB: MySQL 4/5 - SUID Routine Miscalculation Arbitrary DML Statement Execution
source: wwwsecurityfocuscom/bid/19559/info MySQL is prone to these vulnerabilities: - A privilege-elevation vulnerability A user with privileges to execute SUID routines may gain elevated privileges by executing certain commands and code with higher privileges - A security-bypass vulnerability A user can bypass restrictions and creat ...

References

CWE-20http://lists.mysql.com/commits/7918http://bugs.mysql.com/bug.php?id=18630http://www.securityfocus.com/bid/19559http://secunia.com/advisories/21506http://dev.mysql.com/doc/refman/5.0/en/news-5-0-25.htmlhttp://securitytracker.com/id?1016709http://www.ubuntu.com/usn/usn-338-1http://secunia.com/advisories/21770http://www.novell.com/linux/security/advisories/2006_23_sr.htmlhttp://secunia.com/advisories/22080http://www.redhat.com/support/errata/RHSA-2007-0083.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0364.htmlhttp://secunia.com/advisories/30351http://www.vupen.com/english/advisories/2006/3306https://exchange.xforce.ibmcloud.com/vulnerabilities/28442https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10105https://usn.ubuntu.com/338-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/28398/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook