Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-0903 | 4.6 |
MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function. NOTE: this issue was originally reported for the mysql_query fu
|
13-02-2023 - 02:16 | 27-02-2006 - 23:02 | |
CVE-2006-2753 | 7.5 |
SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properl
|
17-12-2019 - 20:16 | 01-06-2006 - 17:02 | |
CVE-2006-1516 | 5.0 |
The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read.
|
17-12-2019 - 20:16 | 05-05-2006 - 12:46 | |
CVE-2006-1517 | 5.0 |
sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error m
|
17-12-2019 - 20:16 | 05-05-2006 - 12:46 | |
CVE-2006-3081 | 4.0 |
mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.
|
17-12-2019 - 17:13 | 19-06-2006 - 18:02 | |
CVE-2006-4380 | 2.1 |
MySQL before 4.1.13 allows local users to cause a denial of service (persistent replication slave crash) via a query with multiupdate and subselects.
|
11-10-2017 - 01:31 | 28-08-2006 - 18:04 |