Description

Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct unauthorized activities.

Remediation

References

CVE-2004-0957

Related Vulnerabilities

WordPress Plugin Debug Bar Unspecified Vulnerability (0.8)

WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.18)

SharePoint CVE-2018-8628 Vulnerability (CVE-2018-8628)

WordPress Plugin Advanced Order Export For WooCommerce Cross-Site Scripting (3.1.7)

IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7449)

Severity

Medium

Classification

CVE-2004-0957

Tags

Missing Update Known Vulnerabilities