Описание
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | DNE | |
| lucid | DNE | |
| maverick | released | 5.1.61-0ubuntu0.10.10.1 |
| natty | not-affected | 5.1.54-1ubuntu4 |
| oneiric | not-affected | |
| upstream | not-affected | 5.1.58-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | ignored | |
| maverick | ignored | |
| natty | ignored | |
| oneiric | ignored | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | not-affected | 5.0.51a-3ubuntu5.8 |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | not-affected | 5.0.51a-24+lenny5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 5.1.61-0ubuntu0.10.04.1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | DNE |
Показывать по
Ссылки на источники
6.8 Medium
CVSS2
Связанные уязвимости
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x ...
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
6.8 Medium
CVSS2