Back to search

MySQL GRANT Access Weakness

Severity CVSS Published Added Modified
7 (AV:N/AC:M/Au:N/C:P/I:P/A:P) September 05, 2004 December 22, 2004 August 21, 2013

Description

Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct unauthorized activities.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

mysql-upgrade-4_0_21

Related Vulnerabilities