CVE - CVE-2006-4031

CVE-ID
CVE-2006-4031	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a table through a previously created MERGE table, even after the user's privileges are revoked for the original table, which might violate intended security policy.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:http://bugs.mysql.com/bug.php?id=15195 CONFIRM:https://issues.rpath.com/browse/RPL-568 CONFIRM:http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.html CONFIRM:http://dev.mysql.com/doc/refman/5.0/en/news-5-0-24.html CONFIRM:http://docs.info.apple.com/article.html?artnum=305214 APPLE:APPLE-SA-2007-03-13 URL:http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html MANDRIVA:MDKSA-2006:149 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:149 REDHAT:RHSA-2007:0083 URL:http://www.redhat.com/support/errata/RHSA-2007-0083.html REDHAT:RHSA-2008:0768 URL:http://www.redhat.com/support/errata/RHSA-2008-0768.html REDHAT:RHSA-2008:0364 URL:http://www.redhat.com/support/errata/RHSA-2008-0364.html SUSE:SUSE-SR:2006:023 URL:http://www.novell.com/linux/security/advisories/2006_23_sr.html UBUNTU:USN-338-1 URL:http://www.ubuntu.com/usn/usn-338-1 CERT:TA07-072A URL:http://www.us-cert.gov/cas/techalerts/TA07-072A.html BID:19279 URL:http://www.securityfocus.com/bid/19279 OVAL:oval:org.mitre.oval:def:10468 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10468 SECUNIA:30351 URL:http://secunia.com/advisories/30351 VUPEN:ADV-2006-3079 URL:http://www.vupen.com/english/advisories/2006/3079 VUPEN:ADV-2007-0930 URL:http://www.vupen.com/english/advisories/2007/0930 SECTRACK:1016617 URL:http://securitytracker.com/id?1016617 SECUNIA:21259 URL:http://secunia.com/advisories/21259 SECUNIA:21382 URL:http://secunia.com/advisories/21382 SECUNIA:21685 URL:http://secunia.com/advisories/21685 SECUNIA:21770 URL:http://secunia.com/advisories/21770 SECUNIA:21627 URL:http://secunia.com/advisories/21627 SECUNIA:22080 URL:http://secunia.com/advisories/22080 SECUNIA:24479 URL:http://secunia.com/advisories/24479 SECUNIA:31226 URL:http://secunia.com/advisories/31226
Assigning CNA
N/A
Date Entry Created
20060809	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20060809)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org