Vulnerability in Openpkg
CVE-2004-0957
Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct u…
EPSS: 0.024 (82.1th percentile) — read the EPSS interpretation.
Affected products
- Openpkg — versions 2.1, 2.2, current
- Oracle Mysql — versions 3.20, 3.20.32a, 3.21
- Trustix Secure_linux — versions 1.5, 2.0, 2.1
- Redhat Enterprise_linux — versions 3.0
- Redhat Enterprise_linux_desktop — versions 3.0
- Suse Suse_linux — versions 8.0, 8.1, 8.2
- Ubuntu Ubuntu_linux — versions 4.1
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (vendor-advisory, x_refsource_CONECTIVA)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)
- cve@mitre.org (vendor-advisory, x_refsource_MANDRAKE)
- cve@mitre.org (x_refsource_UBUNTU, vendor-advisory)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (government-resource, x_refsource_CIAC, third-party-advisory)