QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-0369

Back to search

CVE-2006-0369

Published: Jan 22, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

MySQL 5.0.18 allows local users with access to a VIEW to obtain sensitive information via the "SELECT * FROM information_schema.views;" query, which returns the query that created the VIEW. NOTE: this issue has been disputed by third parties, saying that the availability of the schema is a normal and sometimes desired aspect of database access

VendorProductVersions

n/a

n/a

affected
n/a

References

20060122 Re: MySQL 5.0 information leak?
mailing-list
x_refsource_BUGTRAQ
20060123 RE: MySQL 5.0 information leak?
mailing-list
x_refsource_BUGTRAQ
20060120 MySQL 5.0 information leak?
mailing-list
x_refsource_BUGTRAQ
20060124 Re: MySQL 5.0 information leak?
mailing-list
x_refsource_BUGTRAQ
20060121 Re: MySQL 5.0 information leak?
mailing-list
x_refsource_BUGTRAQ
20060121 RE: MySQL 5.0 information leak?
mailing-list
x_refsource_BUGTRAQ
20060128 Re: MySQL 5.0 information leak?
mailing-list
x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now