CVE-2006-4227

high

Description

MySQL before 5.0.25 and 5.1 before 5.1.12 evaluates arguments of suid routines in the security context of the routine's definer instead of the routine's caller, which allows remote authenticated users to gain privileges through a routine that has been made available using GRANT EXECUTE.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10105

https://exchange.xforce.ibmcloud.com/vulnerabilities/28442

http://www.vupen.com/english/advisories/2006/3306

http://www.ubuntu.com/usn/usn-338-1

http://www.redhat.com/support/errata/RHSA-2008-0364.html

http://www.redhat.com/support/errata/RHSA-2007-0083.html

http://www.novell.com/linux/security/advisories/2006_23_sr.html

http://securitytracker.com/id?1016709

http://secunia.com/advisories/30351

http://secunia.com/advisories/22080

http://secunia.com/advisories/21770

http://secunia.com/advisories/21506

http://lists.mysql.com/commits/7918

http://dev.mysql.com/doc/refman/5.0/en/news-5-0-25.html

Details

Source: Mitre, NVD

Published: 2006-08-18

Updated: 2019-12-17

Risk Information

CVSS v2

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High