cve-2009-5026
Vulnerability from cvelistv5
Published
2012-08-17 00:00
Modified
2024-08-07 07:24
Severity ?
EPSS score ?
Summary
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:24:53.981Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=640177"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.mysql.com/bug.php?id=49124"
},
{
"name": "SUSE-SU-2012:0984",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html"
},
{
"name": "[oss-security] 20111018 Re: MySQL executable comment execution on MySQL slave server (from 2009)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://seclists.org/oss-sec/2011/q4/101"
},
{
"name": "49179",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/49179"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-11-26T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2012-10-13T09:00:00",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=640177"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.mysql.com/bug.php?id=49124"
},
{
"name": "SUSE-SU-2012:0984",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html"
},
{
"name": "[oss-security] 20111018 Re: MySQL executable comment execution on MySQL slave server (from 2009)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://seclists.org/oss-sec/2011/q4/101"
},
{
"name": "49179",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/49179"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2009-5026",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=640177",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=640177"
},
{
"name": "http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html",
"refsource": "CONFIRM",
"url": "http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html"
},
{
"name": "http://bugs.mysql.com/bug.php?id=49124",
"refsource": "CONFIRM",
"url": "http://bugs.mysql.com/bug.php?id=49124"
},
{
"name": "SUSE-SU-2012:0984",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html"
},
{
"name": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html",
"refsource": "CONFIRM",
"url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html"
},
{
"name": "[oss-security] 20111018 Re: MySQL executable comment execution on MySQL slave server (from 2009)",
"refsource": "MLIST",
"url": "http://seclists.org/oss-sec/2011/q4/101"
},
{
"name": "49179",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/49179"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2009-5026",
"datePublished": "2012-08-17T00:00:00",
"dateReserved": "2010-12-09T00:00:00",
"dateUpdated": "2024-08-07T07:24:53.981Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC198CDB-CAC0-41DD-9FCD-42536E7FE11A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B77A2761-2B44-4061-9C29-A54F90A1AD83\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B3AD851-056F-4E57-B85B-4AC5A5A20C0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FD24EA8C-4FCA-4F40-B2EA-7DFA49432483\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"754B78F2-A03C-40BE-812B-F5E57B93D20B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"575039BD-A8B6-4459-B5F0-F220A94650EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"542B23CB-7535-4EF7-B926-466A5161A0D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"45E686C3-4100-465C-9F45-068580B496E5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E9F09D8-6FAE-4A5B-AE04-248CD52C5FF4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB618DB2-6B00-4E99-8232-937D2C51986B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"665E063D-355D-4A5A-A05F-36BF582DE36F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.24:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4C6CD84-EA5D-451F-AFC3-5F7094F0017D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.45:b:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F8AFD18-8FA4-4A5F-A504-28D4F16DC3F1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.82:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9369CF20-D05C-41A2-8F9E-DE259FCF9E1C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.84:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"34DDFA0E-91D5-4B4C-8BB7-58B663D7F94F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.0.87:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8CBB79BC-E3DD-439F-A19C-A8CA70942EC4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.23:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AA586E2B-A349-47C8-A17C-DA9016C6C3B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.41:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4413BB52-6FBD-4C12-8864-ADDC65E45B25\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.45:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F53A8437-C61A-4203-B341-B5596569E50B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.51:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8EBAE3C-F24D-4935-96BF-9541EC03B8F5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.67:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C98C5EFF-B629-4FFF-B535-0C25DADD1C25\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.75:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2FA3E354-4366-46B5-ACD2-E72D0C8320A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.77:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C002047-0FB1-4DC6-9108-B4B5AAFAC16A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.81:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"584C0690-2826-4389-95AD-42048AEE1916\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.83:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0CB85180-0F28-4281-BB59-E3F29BE25C9C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.85:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2E96AD6D-3AC1-4232-B0A9-C31E1BF6B169\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.86:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"565E57C0-B6B9-4868-8907-B436E5D5C56F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.88:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A53D5E1-70FE-4816-B919-C6CCC4D93F56\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.89:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5539B564-D3BD-4E25-A65F-57187C9DAC59\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.90:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"77E5871A-25F8-4EE6-B286-142F3A6222F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.91:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA1024DA-7B19-4EC0-AD21-C521B14C44B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.0.92:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9AF610AF-08E3-4F19-9091-B2A516B829F3\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.1.23:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7D0F7A49-62A2-4201-B6F3-8DB9902A4480\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.1.31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C56D394-4CE1-4237-A681-1474B5436CC7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.1.32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2BFBC7B-5C23-4CDB-AE4F-721378C36B07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.1.34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F68CA8CA-2755-450A-80E2-286A571987F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mysql:mysql:5.1.37:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6287E2C9-DF38-4E4E-A8E4-6AC6ADDC920D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F58612F4-1CAC-4BFC-A9B2-3D4025F428FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"73F49A1D-BCA3-4772-8AB3-621CCC997B3A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F719DD8E-8379-43C3-97F9-DE350E457F7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"342BB65B-1358-441C-B59A-1756BCC6414A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8589B1E7-0D6D-44B4-A36E-8225C5D15828\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6341F695-6034-4CC1-9485-ACD3A0E1A079\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1DF5F19-ECD9-457F-89C6-6F0271CF4766\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"446DB5E9-EF4C-4A53-911E-91A802AECA5D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5829BE6A-BC58-482B-9DA1-04FDD413A7A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C85D20DF-702B-4F0B-922D-782474A4B663\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"73A09785-3CA4-4797-A836-A958DCDC322F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C4DE3D79-0966-4E14-9288-7C269A2CEEC3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"564F6A24-BEB3-4420-A633-8AD54C292436\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"047FBCCD-DE7C-41FA-80A3-AD695C643C7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"687CC501-4CB2-4295-86F6-A5E45DEC2D0D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"822A718D-AD9D-4AB9-802F-5F5C6309D809\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CA2D4002-FD96-462D-BA55-4624170CAA4C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A40FE1C-6EB0-4C75-867E-B1F8408E5A0A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.23:a:*:*:*:*:*:*\", \"matchCriteriaId\": \"9D7B68A6-13FA-4EAE-8ED0-5940A72A3D82\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.24:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"64F37486-E91C-47C4-9F53-4CFDBF8C1EEC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.25:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"53A7D87C-E34C-4595-88D5-CD483B3E8CE7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.26:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"28103843-D04F-4180-A71D-8DAC4E28C2F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.27:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5FEAE55E-7330-4A5A-A862-8D7E7621EB95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"848D4621-AFB8-4A12-A20E-4FC9F1774DE8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.29:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5138E55E-58C1-44B5-A296-A46DF2920DF9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31B9607A-1E58-4471-BEDE-03484A1E9739\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.31:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"FD25674A-B158-4770-B269-A9A039C79A8E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.33:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DDCB266F-E642-4447-8B9C-A58ED4D29227\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.34:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FF8582D-3AB5-4F16-AD52-ED5D0CE10120\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB79189C-344C-4D5D-A8D8-C3852F7BCFDF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.36:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"63A48A7A-8DE5-4278-AD0B-4736B45DF337\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.37:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"F828A5AD-5EA5-4B02-8BD4-0B2A109342F2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.38:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"34E9C1C2-3F7E-4447-92B8-8D4F2A623812\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.39:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25A6FDB0-A86C-4312-AB75-C2A942315DE6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.40:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F47B75E9-46C7-45D9-86FA-CBD2B2F853BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.40:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"042A36D5-A5CE-4DAF-B0CA-2F7F6FEB2D37\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.41:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D04AF072-B257-4025-BDD2-9B1519899ECE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.42:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E2D79B84-CDC7-4F8B-A59A-E808ED05CC58\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.43:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5F0CA63-8A14-42C0-BD75-C38ACC121EDB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.43:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"5A567DBC-EC87-4F85-9CEF-5210AFED5F1F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.44:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1E7868A-070E-4CF7-9A6E-1C20F0CC34CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.45:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BDC43B01-D72D-4DED-BA0B-A3A72D0F1FD8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.46:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"94461EC8-D582-4C5A-AD1E-25D8BE5982E3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.46:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"771B63F2-3D6B-4A91-B626-A85A86C62D4B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.47:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"119F1C97-94FB-4BDB-ADDD-A47CFB455ED8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.48:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6904B58-303E-4B99-A1B0-942864449C79\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.49:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"91FD895F-4390-4E29-91E4-7FAC2465422D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql:5.1.49:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"11660E47-0B83-4BE9-8FE5-AE0CD99167CA\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.\"}, {\"lang\": \"es\", \"value\": \"La caracter\\u00edstica de comentarios ejecutables en MySQL v5.0.x antes de v5.0.93 y v5.1.x antes de v5.1.50, cuando se ejecuta con ciertas configuraciones de esclavos en la que el esclavo est\\u00e1 ejecutando una versi\\u00f3n m\\u00e1s reciente que el maestro, permite a atacantes remotos ejecutar comandos SQL a trav\\u00e9s de comentarios personalizados.\\r\\n\"}]",
"id": "CVE-2009-5026",
"lastModified": "2024-11-21T01:11:01.083",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2012-08-17T00:55:01.470",
"references": "[{\"url\": \"http://bugs.mysql.com/bug.php?id=49124\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://seclists.org/oss-sec/2011/q4/101\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/49179\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=640177\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://bugs.mysql.com/bug.php?id=49124\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://seclists.org/oss-sec/2011/q4/101\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/49179\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=640177\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-89\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2009-5026\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2012-08-17T00:55:01.470\",\"lastModified\":\"2024-11-21T01:11:01.083\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.\"},{\"lang\":\"es\",\"value\":\"La caracter\u00edstica de comentarios ejecutables en MySQL v5.0.x antes de v5.0.93 y v5.1.x antes de v5.1.50, cuando se ejecuta con ciertas configuraciones de esclavos en la que el esclavo est\u00e1 ejecutando una versi\u00f3n m\u00e1s reciente que el maestro, permite a atacantes remotos ejecutar comandos SQL a trav\u00e9s de comentarios personalizados.\\r\\n\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-89\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC198CDB-CAC0-41DD-9FCD-42536E7FE11A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B77A2761-2B44-4061-9C29-A54F90A1AD83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B3AD851-056F-4E57-B85B-4AC5A5A20C0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD24EA8C-4FCA-4F40-B2EA-7DFA49432483\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"754B78F2-A03C-40BE-812B-F5E57B93D20B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"575039BD-A8B6-4459-B5F0-F220A94650EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"542B23CB-7535-4EF7-B926-466A5161A0D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45E686C3-4100-465C-9F45-068580B496E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E9F09D8-6FAE-4A5B-AE04-248CD52C5FF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB618DB2-6B00-4E99-8232-937D2C51986B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"665E063D-355D-4A5A-A05F-36BF582DE36F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4C6CD84-EA5D-451F-AFC3-5F7094F0017D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.45:b:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F8AFD18-8FA4-4A5F-A504-28D4F16DC3F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.82:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9369CF20-D05C-41A2-8F9E-DE259FCF9E1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.84:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34DDFA0E-91D5-4B4C-8BB7-58B663D7F94F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.87:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CBB79BC-E3DD-439F-A19C-A8CA70942EC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA586E2B-A349-47C8-A17C-DA9016C6C3B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.41:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4413BB52-6FBD-4C12-8864-ADDC65E45B25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.45:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F53A8437-C61A-4203-B341-B5596569E50B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.51:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8EBAE3C-F24D-4935-96BF-9541EC03B8F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.67:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C98C5EFF-B629-4FFF-B535-0C25DADD1C25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.75:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FA3E354-4366-46B5-ACD2-E72D0C8320A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.77:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C002047-0FB1-4DC6-9108-B4B5AAFAC16A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.81:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"584C0690-2826-4389-95AD-42048AEE1916\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.83:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CB85180-0F28-4281-BB59-E3F29BE25C9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.85:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E96AD6D-3AC1-4232-B0A9-C31E1BF6B169\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.86:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"565E57C0-B6B9-4868-8907-B436E5D5C56F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.88:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A53D5E1-70FE-4816-B919-C6CCC4D93F56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.89:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5539B564-D3BD-4E25-A65F-57187C9DAC59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.90:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77E5871A-25F8-4EE6-B286-142F3A6222F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.91:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA1024DA-7B19-4EC0-AD21-C521B14C44B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.92:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AF610AF-08E3-4F19-9091-B2A516B829F3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D0F7A49-62A2-4201-B6F3-8DB9902A4480\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C56D394-4CE1-4237-A681-1474B5436CC7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2BFBC7B-5C23-4CDB-AE4F-721378C36B07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F68CA8CA-2755-450A-80E2-286A571987F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6287E2C9-DF38-4E4E-A8E4-6AC6ADDC920D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F58612F4-1CAC-4BFC-A9B2-3D4025F428FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73F49A1D-BCA3-4772-8AB3-621CCC997B3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F719DD8E-8379-43C3-97F9-DE350E457F7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"342BB65B-1358-441C-B59A-1756BCC6414A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8589B1E7-0D6D-44B4-A36E-8225C5D15828\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6341F695-6034-4CC1-9485-ACD3A0E1A079\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1DF5F19-ECD9-457F-89C6-6F0271CF4766\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"446DB5E9-EF4C-4A53-911E-91A802AECA5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5829BE6A-BC58-482B-9DA1-04FDD413A7A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C85D20DF-702B-4F0B-922D-782474A4B663\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73A09785-3CA4-4797-A836-A958DCDC322F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4DE3D79-0966-4E14-9288-7C269A2CEEC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"564F6A24-BEB3-4420-A633-8AD54C292436\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"047FBCCD-DE7C-41FA-80A3-AD695C643C7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"687CC501-4CB2-4295-86F6-A5E45DEC2D0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"822A718D-AD9D-4AB9-802F-5F5C6309D809\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA2D4002-FD96-462D-BA55-4624170CAA4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A40FE1C-6EB0-4C75-867E-B1F8408E5A0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.23:a:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D7B68A6-13FA-4EAE-8ED0-5940A72A3D82\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64F37486-E91C-47C4-9F53-4CFDBF8C1EEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53A7D87C-E34C-4595-88D5-CD483B3E8CE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28103843-D04F-4180-A71D-8DAC4E28C2F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FEAE55E-7330-4A5A-A862-8D7E7621EB95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"848D4621-AFB8-4A12-A20E-4FC9F1774DE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5138E55E-58C1-44B5-A296-A46DF2920DF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31B9607A-1E58-4471-BEDE-03484A1E9739\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.31:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD25674A-B158-4770-B269-A9A039C79A8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDCB266F-E642-4447-8B9C-A58ED4D29227\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.34:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FF8582D-3AB5-4F16-AD52-ED5D0CE10120\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB79189C-344C-4D5D-A8D8-C3852F7BCFDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63A48A7A-8DE5-4278-AD0B-4736B45DF337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.37:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F828A5AD-5EA5-4B02-8BD4-0B2A109342F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34E9C1C2-3F7E-4447-92B8-8D4F2A623812\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25A6FDB0-A86C-4312-AB75-C2A942315DE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F47B75E9-46C7-45D9-86FA-CBD2B2F853BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.40:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"042A36D5-A5CE-4DAF-B0CA-2F7F6FEB2D37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.41:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D04AF072-B257-4025-BDD2-9B1519899ECE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.42:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2D79B84-CDC7-4F8B-A59A-E808ED05CC58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.43:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5F0CA63-8A14-42C0-BD75-C38ACC121EDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.43:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A567DBC-EC87-4F85-9CEF-5210AFED5F1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.44:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1E7868A-070E-4CF7-9A6E-1C20F0CC34CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.45:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDC43B01-D72D-4DED-BA0B-A3A72D0F1FD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.46:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"94461EC8-D582-4C5A-AD1E-25D8BE5982E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.46:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"771B63F2-3D6B-4A91-B626-A85A86C62D4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.47:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"119F1C97-94FB-4BDB-ADDD-A47CFB455ED8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.48:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6904B58-303E-4B99-A1B0-942864449C79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.49:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91FD895F-4390-4E29-91E4-7FAC2465422D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.49:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"11660E47-0B83-4BE9-8FE5-AE0CD99167CA\"}]}]}],\"references\":[{\"url\":\"http://bugs.mysql.com/bug.php?id=49124\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\"]},{\"url\":\"http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://seclists.org/oss-sec/2011/q4/101\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/49179\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=640177\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\"]},{\"url\":\"http://bugs.mysql.com/bug.php?id=49124\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://dev.mysql.com/doc/refman/5.0/en/news-5-0-93.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/oss-sec/2011/q4/101\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/49179\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=640177\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.