CVE-2006-0903

by Fred · 27/02/2006

MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function. NOTE: this issue was originally reported for the mysql_query function, but the vendor states that since mysql_query expects a null character, this is not an issue for mysql_query.

Date published : 2006-02-27

http://www.securityfocus.com/bid/16850

http://bugs.mysql.com/bug.php?id=17667

CVE-2006-0903

Similar

Recent Posts

Categories

CVE-2006-0903

Share this:

Similar

Recent Posts

Categories

Tags