CVE-2006-4226

Severity

36%

Complexity

39%

Confidentiality

81%

Successful exploitation requires that MySQL runs on a system with a file system supporting case-sensitive file names. This vulnerability is addresses in the following product releases: MySQL, MySQL, 4.1.21 MySQL, MySQL, 5.0.25 MySQL, MySQL, 5.1.12

MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the database name differs only in case from a database for which they have permissions.

Successful exploitation requires that MySQL runs on a system with a file system supporting case-sensitive file names. This vulnerability is addresses in the following product releases: MySQL, MySQL, 4.1.21 MySQL, MySQL, 5.0.25 MySQL, MySQL, 5.1.12

CVSS 2.0 Base Score 3.6. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:S/C:P/I:P/A:N).

Overview

Type

MySQL

First reported 18 years ago

2006-08-18 20:04:00

Last updated 5 years ago

2019-12-17 20:16:00

Affected Software

MySQL MySQL 4.1.0

4.1.0

MySQL MySQL 4.1.2

4.1.2

MySQL MySQL 4.1.3

4.1.3

MySQL MySQL 4.1.8

4.1.8

MySQL MySQL 4.1.10

4.1.10

MySQL MySQL 4.1.12

4.1.12

MySQL MySQL 4.1.13

4.1.13

MySQL MySQL 4.1.14

4.1.14

MySQL MySQL 4.1.15

4.1.15

MySQL MySQL 5.0.0

5.0.0

MySQL MySQL 5.0.1

5.0.1

MySQL MySQL 5.0.2

5.0.2

MySQL MySQL 5.0.3

5.0.3

MySQL MySQL 5.0.4

5.0.4

MySQL MySQL 5.0.5

5.0.5

MySQL MySQL 5.0.10

5.0.10

MySQL MySQL 5.0.15

5.0.15

MySQL MySQL 5.0.16

5.0.16

MySQL MySQL 5.0.17

5.0.17

MySQL MySQL 5.0.20

5.0.20

MySQL 5.1.5

5.1.5

Oracle MySQL 4.0.0

4.0.0

Oracle MySQL 4.0.1

4.0.1

Oracle MySQL 4.0.2

4.0.2

Oracle MySQL 4.0.3

4.0.3

Oracle MySQL 4.0.4

4.0.4

Oracle MySQL 4.0.5

4.0.5

Oracle MySQL 4.0.5a

4.0.5a

Oracle MySQL 4.0.6

4.0.6

Oracle MySQL 4.0.7

4.0.7

Oracle MySQL 4.0.7 Gamma

4.0.7

Oracle MySQL 4.0.8

4.0.8

Oracle MySQL 4.0.8 Gamma

4.0.8

Oracle MySQL 4.0.9

4.0.9

Oracle MySQL 4.0.9 Gamma

4.0.9

Oracle MySQL 4.0.10

4.0.10

Oracle MySQL 4.0.11

4.0.11

Oracle MySQL 4.0.11 Gamma

4.0.11

Oracle MySQL 4.0.12

4.0.12

Oracle MySQL 4.0.13

4.0.13

Oracle MySQL 4.0.14

4.0.14

Oracle MySQL 4.0.15

4.0.15

Oracle MySQL 4.0.16

4.0.16

Oracle MySQL 4.0.17

4.0.17

Oracle MySQL 4.0.18

4.0.18

Oracle MySQL 4.0.19

4.0.19

Oracle MySQL 4.0.20

4.0.20

Oracle MySQL 4.0.21

4.0.21

Oracle MySQL 4.0.23

4.0.23

Oracle MySQL 4.0.24

4.0.24

Oracle MySQL 4.0.25

4.0.25

Oracle MySQL 4.0.26

4.0.26

Oracle MySQL 4.0.27

4.0.27

Oracle MySQL 4.1.0 Alpha

4.1.0

Oracle MySQL 4.1.1

4.1.1

Oracle MySQL 4.1.2 Alpha

4.1.2

Oracle MySQL 4.1.3 Beta

4.1.3

Oracle MySQL 4.1.4

4.1.4

Oracle MySQL 4.1.5

4.1.5

Oracle MySQL 4.1.6

4.1.6

Oracle MySQL 4.1.7

4.1.7

Oracle MySQL 4.1.9

4.1.9

Oracle MySQL 4.1.11

4.1.11

Oracle MySQL 4.1.16

4.1.16

Oracle MySQL 4.1.17

4.1.17

Oracle MySQL 4.1.18

4.1.18

Oracle MySQL 4.1.19

4.1.19

Oracle MySQL 4.1.20

4.1.20

Oracle MySQL 4.1.21

4.1.21

Oracle MySQL 5.0.0 Alpha

5.0.0

Oracle MySQL 5.0.3 Beta

5.0.3

Oracle MySQL 5.0.6

5.0.6

Oracle MySQL 5.0.7

5.0.7

Oracle MySQL 5.0.8

5.0.8

Oracle MySQL 5.0.9

5.0.9

Oracle MySQL 5.0.11

5.0.11

Oracle MySQL 5.0.12

5.0.12

Oracle MySQL 5.0.13

5.0.13

Oracle MySQL 5.0.14

5.0.14

Oracle MySQL 5.0.18

5.0.18

Oracle MySQL 5.0.19

5.0.19

Oracle MySQL 5.0.21

5.0.21

Oracle MySQL 5.0.22

5.0.22

Oracle MySQL 5.1.1

5.1.1

Oracle MySQL 5.1.2

5.1.2

Oracle MySQL 5.1.3

5.1.3

Oracle MySQL 5.1.4

5.1.4

Oracle MySQL 5.1.6

5.1.6

Oracle MySQL 5.1.7

5.1.7

Oracle MySQL 5.1.8

5.1.8

Oracle MySQL 5.1.9

5.1.9

Oracle MySQL 5.1.10

5.1.10

Oracle MySQL 5.1.11

5.1.11

References

http://bugs.mysql.com/bug.php?id=17647

Exploit, Patch

http://dev.mysql.com/doc/refman/5.0/en/news-5-0-25.html

Patch

http://docs.info.apple.com/article.html?artnum=305214

APPLE-SA-2007-03-13

[commits] 20060504 bk commit into 4.1 tree (bar:1.2474)

Patch

21506

Exploit, Patch, Vendor Advisory

21627

21762

22080

24479

24744

1016710

DSA-1169

MDKSA-2006:149

SUSE-SR:2006:023

RHSA-2007:0083

RHSA-2007:0152

19559

Exploit, Patch

TA07-072A

US Government Resource

ADV-2006-3306

ADV-2007-0930

mysql-case-privilege-escalation(28448)

oval:org.mitre.oval:def:10729

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.