MySQL prior to 4.1.13 allows local users to cause a denial of service (persistent replication slave crash) via a query with multiupdate and subselects.
Several local vulnerabilities have been discovered in the MySQL
database server The Common Vulnerabilities and Exposures project
identifies the following problems:
CVE-2006-4226
Michal Prokopiuk discovered that remote authenticated users are
permitted to create and access a database if the lowercase
spelling is the same as one they ha ...