4.6

CVE-2006-0903

MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function.  NOTE: this issue was originally reported for the mysql_query function, but the vendor states that since mysql_query expects a null character, this is not an issue for mysql_query.

Data is provided by the National Vulnerability Database (NVD)
MysqlMysql Version4.1.0
MysqlMysql Version4.1.3
MysqlMysql Version4.1.8
MysqlMysql Version4.1.10
MysqlMysql Version4.1.12
MysqlMysql Version4.1.13
MysqlMysql Version4.1.14
MysqlMysql Version4.1.15
MysqlMysql Version5.0.1
MysqlMysql Version5.0.2
MysqlMysql Version5.0.4
MysqlMysql Version5.0.5
MysqlMysql Version5.0.10
MysqlMysql Version5.0.15
MysqlMysql Version5.0.16
MysqlMysql Version5.0.17
OracleMysql Version3.23
OracleMysql Version3.23.0 Updatealpha
OracleMysql Version3.23.1
OracleMysql Version3.23.2
OracleMysql Version3.23.3
OracleMysql Version3.23.4
OracleMysql Version3.23.5
OracleMysql Version3.23.6
OracleMysql Version3.23.7
OracleMysql Version3.23.8
OracleMysql Version3.23.9
OracleMysql Version3.23.10
OracleMysql Version3.23.11
OracleMysql Version3.23.12
OracleMysql Version3.23.13
OracleMysql Version3.23.14
OracleMysql Version3.23.15
OracleMysql Version3.23.16
OracleMysql Version3.23.17
OracleMysql Version3.23.18
OracleMysql Version3.23.19
OracleMysql Version3.23.20 Updatebeta
OracleMysql Version3.23.21
OracleMysql Version3.23.22
OracleMysql Version3.23.23
OracleMysql Version3.23.24
OracleMysql Version3.23.25
OracleMysql Version3.23.26
OracleMysql Version3.23.27
OracleMysql Version3.23.28 Updategamma
OracleMysql Version3.23.29
OracleMysql Version3.23.30
OracleMysql Version3.23.31
OracleMysql Version3.23.32
OracleMysql Version3.23.33
OracleMysql Version3.23.34
OracleMysql Version3.23.35
OracleMysql Version3.23.36
OracleMysql Version3.23.37
OracleMysql Version3.23.38
OracleMysql Version3.23.39
OracleMysql Version3.23.40
OracleMysql Version3.23.41
OracleMysql Version3.23.42
OracleMysql Version3.23.43
OracleMysql Version3.23.44
OracleMysql Version3.23.45
OracleMysql Version3.23.46
OracleMysql Version3.23.47
OracleMysql Version3.23.48
OracleMysql Version3.23.49
OracleMysql Version3.23.50
OracleMysql Version3.23.51
OracleMysql Version3.23.52
OracleMysql Version3.23.53
OracleMysql Version3.23.54
OracleMysql Version3.23.55
OracleMysql Version3.23.56
OracleMysql Version3.23.57
OracleMysql Version3.23.58
OracleMysql Version3.23.59
OracleMysql Version4.0.0
OracleMysql Version4.0.1
OracleMysql Version4.0.2
OracleMysql Version4.0.3
OracleMysql Version4.0.4
OracleMysql Version4.0.5
OracleMysql Version4.0.5a
OracleMysql Version4.0.6
OracleMysql Version4.0.7
OracleMysql Version4.0.7 Updategamma
OracleMysql Version4.0.8
OracleMysql Version4.0.8 Updategamma
OracleMysql Version4.0.9
OracleMysql Version4.0.9 Updategamma
OracleMysql Version4.0.10
OracleMysql Version4.0.11
OracleMysql Version4.0.11 Updategamma
OracleMysql Version4.0.12
OracleMysql Version4.0.13
OracleMysql Version4.0.14
OracleMysql Version4.0.15
OracleMysql Version4.0.16
OracleMysql Version4.0.17
OracleMysql Version4.0.18
OracleMysql Version4.0.19
OracleMysql Version4.0.20
OracleMysql Version4.0.21
OracleMysql Version4.0.23
OracleMysql Version4.0.24
OracleMysql Version4.0.25
OracleMysql Version4.0.26
OracleMysql Version4.0.27
OracleMysql Version4.1.0 Updatealpha
OracleMysql Version4.1.2 Updatealpha
OracleMysql Version4.1.3 Updatebeta
OracleMysql Version4.1.4
OracleMysql Version4.1.5
OracleMysql Version4.1.6
OracleMysql Version4.1.7
OracleMysql Version4.1.9
OracleMysql Version4.1.11
OracleMysql Version4.1.16
OracleMysql Version4.1.17
OracleMysql Version4.1.18
OracleMysql Version4.1.19
OracleMysql Version5.0.0 Updatealpha
OracleMysql Version5.0.3 Updatebeta
OracleMysql Version5.0.6
OracleMysql Version5.0.7
OracleMysql Version5.0.8
OracleMysql Version5.0.9
OracleMysql Version5.0.11
OracleMysql Version5.0.12
OracleMysql Version5.0.13
OracleMysql Version5.0.14
OracleMysql Version5.0.18
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.28% 0.511
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P