Community Learn Tools Library Leisure

English

Home > Backend Development > PHP Tutorial > body text

MySQL has privilege escalation and security restriction bypass vulnerabilities_PHP Tutorial

WBOY

Release： 2016-07-13 17:03:01

Original

1197 people have browsed it

Affected systems:

MySQL AB MySQL

Description:

MySQL is a very widely used open source Source code relational database system with running versions for various platforms.

On MySQL, users with access rights but without create rights can create a new database with a name that differs only from the accessed database in uppercase and lowercase letters. Successful exploitation of this vulnerability requires that the file system running MySQL supports case-sensitive file names.

Additionally, because the parameters of the suid routine are evaluated in the wrong security context, an attacker can execute arbitrary DML statements via the stored routine with the permissions of the routine definer. A successful attack requires the user to have EXECUTE permission on the stored routine.

Manufacturer patch:

MySQL AB

Currently, the manufacturer has released an upgrade patch to fix this security issue. Please download it from the manufacturer's homepage:

http://lists.mysql.com/commits/5927

http://lists.mysql.com/commits/9122

(t114)

Related labels：

mysql use exist Safety widely Influence promote Permissions payment loopholes system limit

source：php.cn

Previous article：Resolving Deadlocks in SQL Server 2005_PHP Tutorial Next article：SQL Server Express database automatic deployment problems and solutions_PHP tutorial

Statement of this Website

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Latest Articles by Author

What is a NullPointerException, and how do I fix it?

2024-10-22 09:46:29
From Novice to Coder: Your Journey Begins with C Fundamentals

2024-10-13 13:53:41
Unlocking Web Development with PHP: A Beginner's Guide

2024-10-12 12:15:51
Demystifying C: A Clear and Simple Path for New Programmers

2024-10-11 22:47:31
Unlock Your Coding Potential: C Programming for Absolute Beginners

2024-10-11 19:36:51
Unleash Your Inner Programmer: C for Absolute Beginners

2024-10-11 15:50:41
Automate Your Life with C: Scripts and Tools for Beginners

2024-10-11 15:07:41
PHP Made Easy: Your First Steps in Web Development

2024-10-11 14:21:21
Build Anything with Python: A Beginner's Guide to Unleashing Your Creativity

2024-10-11 12:59:11
The Key to Coding: Unlocking the Power of Python for Beginners

2024-10-11 12:17:31

Latest Issues

How to display only the lowest value from a result set (MYSQL) I have the following statement: selectDATE(recieved_on)asDay,round(count(*)/24)AS'average'...

From 2024-04-06 21:44:19

0

1

603

Calculate the sum of fields in another table using MySQL SQL query I have a schema like this: User table with attributes "user_id" and "userna...

From 2024-04-06 19:39:29

0

1

441

MySQL: "Select text from... as <variable here or subquery>" I have the following table with the following data: id text language 1 german text german ...

From 2024-04-06 19:25:54

0

2

529

How to group and count in MySQL? I'm trying to write a query that extracts the total number of undeleted messages sent to f...

From 2024-04-06 18:30:17

0

1

353

MySQL gets data from multiple tables I have a eg_design table which contains the following columns: and eg_domains table which ...

From 2024-04-06 18:42:44

0

2

479

Related Topics

More>

Popular Recommendations

Popular Tutorials

More>

Related Tutorials

Popular Recommendations

Latest courses

Latest Downloads

More>

Web Effects

Website Source Code

Website Materials

Front End Template