mysqld_safe in Oracle MySQL through 5.5.51, 5.6.x through 5.6.32, and 5.7.x through 5.7.14; MariaDB; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17, when using file-based logging, allows local users with access to the mysql account to gain root privileges via a symlink attack on error logs and possibly other files.

OSVersionArchitecturePackageVersionFilename
Debian9allmariadb-10.1< 10.1.45-0+deb9u1mariadb-10.1_10.1.45-0+deb9u1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	9	all	mariadb-10.1	< 10.1.45-0+deb9u1	mariadb-10.1_10.1.45-0+deb9u1_all.deb

alpinelinux 1

f5 1

prion 2

osv 3

ibm 2

veracode 1

cve 2

mariadbunix 1

cbl_mariner 1

nvd 2

cvelist 1

redhatcve 2

myhack58 1

nessus 26

ubuntucve 1

thn 1

checkpoint_advisories 1

exploitdb 2

exploitpack 2

threatpost 1

packetstorm 2

seebug 2

zdt 2

openvas 13

freebsd 1

redhat 5

mageia 1

gentoo 1

debian 2

suse 4

slackware 1

centos 1

oraclelinux 1

oracle 1

alpinelinux

CVE-2016-6664

2016-12-13 21:59:01

K15605622 : MySQL vulnerability CVE-2016-6664

2022-01-07 00:00:00

prion

Design/Logic Flaw

2016-12-13 21:59:00

Design/Logic Flaw

2016-10-25 14:31:00

osv

CVE-2016-6664

2016-12-13 21:59:00

mariadb-10.0 - security update

2017-01-22 00:00:00

libmariadbd-devel-10.6.4-2.1 on GA media

2024-06-15 00:00:00

ibm

Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by the Open Source Oracle MySQL Vulnerabilities (CVE-2016-6664)

2018-06-16 21:48:33

Security Bulletin: Vulnerabilities in MariaDB affect PowerKVM

2018-06-18 01:38:06

veracode

Privilege Escalation

2019-05-02 05:51:01

cve

CVE-2016-6664

2016-12-13 21:59:01

CVE-2016-5617

2016-10-25 14:31:31

mariadbunix

CVE-2016-6664

2016-12-13 21:59:00

cbl_mariner

CVE-2016-6664 affecting package mariadb 10.3.17-3

2021-05-06 23:57:26

nvd

CVE-2016-6664

2016-12-13 21:59:01

CVE-2016-5617

2016-10-25 14:31:31

cvelist

CVE-2016-6664

2016-12-13 21:00:00

redhatcve

CVE-2017-3312

2019-10-10 10:23:00

CVE-2016-6664

2016-11-03 22:17:38

myhack58

MySQL is now a high-risk vulnerability that can cause the server root permission is stealing-vulnerability warning-the black bar safety net

2016-11-05 00:00:00

nessus

MariaDB Server 10.0.x < 10.0.28 Multiple Vulnerabilities

2016-11-04 00:00:00

MariaDB 5.5.x < 5.5.52 Multiple Vulnerabilities

2016-12-08 00:00:00

MariaDB 10.1.x < 10.1.18 Multiple Vulnerabilities

2016-12-08 00:00:00

ubuntucve

CVE-2016-6664

2016-12-13 00:00:00

thn

Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released)

2016-11-02 21:16:00

checkpoint_advisories

MySQL Remote Code Execution (CVE-2016-6662; CVE-2016-6663; CVE-2016-6664)

2016-09-20 00:00:00

exploitdb

MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'mysql' System User Privilege Escalation / Race Condition

2016-11-01 00:00:00

MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation

2016-11-01 00:00:00

exploitpack

MySQL MariaDB PerconaDB 5.5.x5.6.x5.7.x - mysql System User Privilege Escalation Race Condition

2016-11-01 00:00:00

MySQL MariaDB PerconaDB 5.5.x5.6.x5.7.x - root System User Privilege Escalation

2016-11-01 00:00:00

threatpost

Critical MySQL Vulnerabilities Can Lead to Server Compromise

2016-11-02 14:02:10

packetstorm

MySQL / MariaDB / PerconaDB Root Privilege Escalation

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB Privilege Escalation / Race Condition

2016-11-02 00:00:00

seebug

MySQL / MariaDB / PerconaDB elevation of privilege vulnerability, CVE-2016-6664）

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB 提权/条件竞争漏洞（CVE-2016-6663）

2016-11-02 00:00:00

zdt

MySQL / MariaDB / PerconaDB - 'mysql' System User Privilege Escalation / Race Condition

2016-11-02 00:00:00

MySQL / MariaDB / PerconaDB - 'root' Privilege Escalation Vulnerability

2016-11-02 00:00:00

openvas

Oracle MySQL Server <= 5.5.51 / 5.6 <= 5.6.32 / 5.7 <= 5.7.14 Security Update (cpuoct2016) - Linux

2016-10-19 00:00:00

Oracle MySQL Server <= 5.5.51 / 5.6 <= 5.6.32 / 5.7 <= 5.7.14 Security Update (cpuoct2016) - Windows

2016-10-19 00:00:00

SUSE: Security Advisory (SUSE-SU-2017:0412-1)

2021-04-19 00:00:00

freebsd

MySQL -- multiple vulnerabilities

2016-09-13 00:00:00

redhat

(RHSA-2016:2749) Important: rh-mysql56-mysql security update

2016-11-15 11:05:56

(RHSA-2016:2130) Important: mysql55-mysql security update

2016-10-31 19:33:48

(RHSA-2017:2192) Moderate: mariadb security and bug fix update

2017-08-01 05:58:44

mageia

Updated mariadb packages fix security vulnerability

2017-02-20 16:00:19

gentoo

MariaDB: Multiple vulnerabilities

2017-02-20 00:00:00

debian

[SECURITY] [DSA 3770-1] mariadb-10.0 security update

2017-01-22 12:30:50

[SECURITY] [DSA 3770-1] mariadb-10.0 security update

2017-01-22 12:30:50

suse

Security update for mariadb (important)

2017-02-07 18:08:59

Security update for mysql (important)

2017-02-07 00:07:36

Security update for mariadb (important)

2017-02-17 04:16:24

slackware

[slackware-security] mariadb

2017-01-18 20:40:17

centos

mariadb security update

2017-08-24 01:39:47

oraclelinux

mariadb security and bug fix update

2017-08-07 00:00:00

oracle

Oracle Critical Patch Update - October 2016

2016-10-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.118

Percentile

95.3%

JSON

Related for DEBIANCVE:CVE-2016-6664