Database Journal
MS SQL Oracle DB2 Access MySQL PostgreSQL Sybase PHP SQL Etc SQL Scripts & Samples Tips Database Forum Rss Feed

» Database Journal Home
» Database Articles
» Database Tutorials
MS Access
SQL Scripts & Samples
» Database Forum
» Slideshows
Free Newsletters:

News Via RSS Feed

Rss Feed

Database Journal |DBA Support |SQLCourse |SQLCourse2

Featured Database Articles

Database News

Posted Jun 11, 2007

MySQL Security Update Fixes Restrictions Bypass and Library Loading Vulnerabilities

By DatabaseJournal.com Staff

[From FrSIRT]

Two vulnerabilities have been identified in MySQL, which could be exploited by malicious users to bypass security restrictions, manipulate certain data or potentially obtain elevated privileges.

The first issue is caused by an error in the "mysql_update()" [sql/sql_update.cc] function; the second vulnerability is caused by errors in the "udf_init()" and "mysql_create_function()" [sql/sql_udf.cc] functions...

The article continues at http://www.frsirt.com/english/advisories/2007/2122

Database News Archives

Latest Forum Threads
Database News Forum
Topic By Replies Updated
Efficient SQL Server Indexing by Design lcole 0 April 30th, 12:38 PM
Mine Oracle Database, SQL Server and Other Databases with Monarch Data Pump Pro V10.5 lcole 0 April 30th, 12:37 PM
Oracle Database and Oracle Fusion Middleware for Private Social Network Application lcole 0 April 30th, 12:31 PM
Oracle Database Maintains a Stronghold in the DBMS Market lcole 0 April 30th, 12:30 PM