CVE-2004-0957
NONE EPSS 82.2%
Published Feb 9, 200521y ago · Modified Jun 16, 20262w ago
Published Feb 9, 2005 21y ago
Last Modified Jun 16, 2026 2w ago
Description
Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct unauthorized activities.
Threat Intelligence
EPSS Exploit Probability
82.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Affected Products 99
| Vendor | Product | Version | Range |
|---|---|---|---|
| openpkg | openpkg | 2.1 | any |
| openpkg | openpkg | 2.2 | any |
| openpkg | openpkg | current | any |
| oracle | mysql | 3.20 | any |
| oracle | mysql | 3.20.32a | any |
| oracle | mysql | 3.21 | any |
| oracle | mysql | 3.22 | any |
| oracle | mysql | 3.22.26 | any |
| oracle | mysql | 3.22.27 | any |
| oracle | mysql | 3.22.28 | any |
| oracle | mysql | 3.22.29 | any |
| oracle | mysql | 3.22.30 | any |
| oracle | mysql | 3.22.32 | any |
| oracle | mysql | 3.23 | any |
| oracle | mysql | 3.23.2 | any |
| oracle | mysql | 3.23.3 | any |
| oracle | mysql | 3.23.4 | any |
| oracle | mysql | 3.23.5 | any |
| oracle | mysql | 3.23.8 | any |
| oracle | mysql | 3.23.9 | any |
| oracle | mysql | 3.23.10 | any |
| oracle | mysql | 3.23.22 | any |
| oracle | mysql | 3.23.23 | any |
| oracle | mysql | 3.23.24 | any |
| oracle | mysql | 3.23.25 | any |
| oracle | mysql | 3.23.26 | any |
| oracle | mysql | 3.23.27 | any |
| oracle | mysql | 3.23.28 | any |
| oracle | mysql | 3.23.28 | any |
| oracle | mysql | 3.23.29 | any |
| oracle | mysql | 3.23.30 | any |
| oracle | mysql | 3.23.31 | any |
| oracle | mysql | 3.23.32 | any |
| oracle | mysql | 3.23.33 | any |
| oracle | mysql | 3.23.34 | any |
| oracle | mysql | 3.23.36 | any |
| oracle | mysql | 3.23.37 | any |
| oracle | mysql | 3.23.38 | any |
| oracle | mysql | 3.23.39 | any |
| oracle | mysql | 3.23.40 | any |
| oracle | mysql | 3.23.41 | any |
| oracle | mysql | 3.23.42 | any |
| oracle | mysql | 3.23.43 | any |
| oracle | mysql | 3.23.44 | any |
| oracle | mysql | 3.23.45 | any |
| oracle | mysql | 3.23.46 | any |
| oracle | mysql | 3.23.47 | any |
| oracle | mysql | 3.23.48 | any |
| oracle | mysql | 3.23.49 | any |
| oracle | mysql | 3.23.50 | any |
| oracle | mysql | 3.23.51 | any |
| oracle | mysql | 3.23.52 | any |
| oracle | mysql | 3.23.53 | any |
| oracle | mysql | 3.23.53a | any |
| oracle | mysql | 3.23.54 | any |
| oracle | mysql | 3.23.54a | any |
| oracle | mysql | 3.23.55 | any |
| oracle | mysql | 3.23.56 | any |
| oracle | mysql | 3.23.58 | any |
| oracle | mysql | 3.23.59 | any |
| oracle | mysql | 4.0.0 | any |
| oracle | mysql | 4.0.1 | any |
| oracle | mysql | 4.0.2 | any |
| oracle | mysql | 4.0.3 | any |
| oracle | mysql | 4.0.4 | any |
| oracle | mysql | 4.0.5 | any |
| oracle | mysql | 4.0.5a | any |
| oracle | mysql | 4.0.6 | any |
| oracle | mysql | 4.0.7 | any |
| oracle | mysql | 4.0.7 | any |
| oracle | mysql | 4.0.8 | any |
| oracle | mysql | 4.0.8 | any |
| oracle | mysql | 4.0.9 | any |
| oracle | mysql | 4.0.9 | any |
| oracle | mysql | 4.0.10 | any |
| oracle | mysql | 4.0.11 | any |
| oracle | mysql | 4.0.11 | any |
| oracle | mysql | 4.0.12 | any |
| oracle | mysql | 4.0.13 | any |
| oracle | mysql | 4.0.14 | any |
| oracle | mysql | 4.0.15 | any |
| oracle | mysql | 4.0.18 | any |
| oracle | mysql | 4.0.20 | any |
| redhat | enterprise_linux | 3.0 | any |
| redhat | enterprise_linux | 3.0 | any |
| redhat | enterprise_linux | 3.0 | any |
| redhat | enterprise_linux_desktop | 3.0 | any |
| suse | suse_linux | 8.0 | any |
| suse | suse_linux | 8.1 | any |
| suse | suse_linux | 8.2 | any |
| suse | suse_linux | 9.0 | any |
| suse | suse_linux | 9.0 | any |
| suse | suse_linux | 9.1 | any |
| suse | suse_linux | 9.2 | any |
| trustix | secure_linux | 1.5 | any |
| trustix | secure_linux | 2.0 | any |
| trustix | secure_linux | 2.1 | any |
| ubuntu | ubuntu_linux | 4.1 | any |
| ubuntu | ubuntu_linux | 4.1 | any |
References 8
- distro.conectiva.com.br http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000947
- ciac.org http://www.ciac.org/ciac/bulletins/p-018.shtml
- debian.org http://www.debian.org/security/2005/dsa-707
- mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2005:070
- redhat.com http://www.redhat.com/support/errata/RHSA-2004-597.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2004-611.html
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/17783
- ubuntu.com https://www.ubuntu.com/usn/usn-32-1/
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.