icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

MySQL < 4.0.21 Remote GRANT Privilege Escalation

Medium

Synopsis

The remote host is vulnerable to a flaw that allows attackers to retrieve sensitive files or data.

Description

The remote host is running a version of MySQL that is older than version 4.0.21. It is vulnerable to a flaw that may allow an attacker to gain access to unauthorized databases. An attacker can exploit this vulnerability if he has GRANT privileges on databases containing '_'.

Solution

Upgrade to version 4.0.21 or higher.