QwikSec

Security Database

CVE

CWE

Training

CVE-2006-2753

Published: Jun 1, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properly handled when the mysql_real_escape function is used to escape the input.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_DEBIAN

http://lists.mysql.com/announce/364

x_refsource_CONFIRM

mysql-ascii-sql-injection(26875)

vdb-entry

x_refsource_XF

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_MANDRIVA

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_CERT

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_TRUSTIX

APPLE-SA-2007-03-13

vendor-advisory

x_refsource_APPLE

http://docs.info.apple.com/article.html?artnum=305214

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:10312

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

vendor-advisory

x_refsource_UBUNTU

vdb-entry

x_refsource_VUPEN

vendor-advisory

x_refsource_UBUNTU

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=369735

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.