Description

MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a table through a previously created MERGE table, even after the user's privileges are revoked for the original table, which might violate intended security policy.

Remediation

References

CVE-2006-4031

Related Vulnerabilities

Undertow CVE-2022-4492 Vulnerability (CVE-2022-4492)

TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2009-3631)

WordPress Plugin bbPress Members Only Cross-Site Request Forgery (1.2.1)

Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-37389)

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3829)

Severity

Low

Classification

CVE-2006-4031

Tags

Missing Update Known Vulnerabilities