Your submission was sent successfully! Close

CVE-2004-0957

Published: 9 February 2005

Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct unauthorized activities.

Priority

Unknown

Status

Package Release Status
mysql-dfsg
Launchpad, Ubuntu, Debian
dapper
Released (4.0.24-10ubuntu2)
edgy
Released (4.0.24-10ubuntu2)
feisty Does not exist

upstream Needs triage

mysql-dfsg-4.1
Launchpad, Ubuntu, Debian
dapper
Released (4.1.15-1ubuntu5)
edgy
Released (4.1.15-1ubuntu5)
feisty Does not exist

upstream Needs triage

mysql-dfsg-5.0
Launchpad, Ubuntu, Debian
dapper
Released (5.0.22-0ubuntu6.06.3)
edgy
Released (5.0.24a-9ubuntu0.1)
feisty
Released (5.0.38-0ubuntu1)
upstream Needs triage