CVE-2006-1518

Exp

Buffer overflow in the open_table function in sql_base.cc in MySQL 5.0.x up to 5.0.20 might allow remote attackers to execute arbitrary code via crafted COM_TABLE_DUMP packets with invalid length values.

Published: 2006-05-05 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2006-1518 is rated High Exploit Risk (76.4/100): CVSS Medium severity, with high exploitation likelihood (EPSS 42.79%, 97th percentile). 1 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +1.31% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2006-1518

EDB-ID Source Kind Published Link
1741 exploit_db edb 2006-05-02 Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2006-1518

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-01-31 41.49% 42.79% +1.31%
2 2025-12-28 35.58% 41.49% +5.91%
3 2025-12-27 35.58%

Full EPSS history (16 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2006-1518

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
6.5 2.0 MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:S)
A single authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
 8.0 6.4 [email protected]

Weakness enumeration for CVE-2006-1518

OS Trackers for CVE-2006-1518

vendor priority summary link
ubuntu medium CVE-2006-1518 medium priority: Ubuntu including 3 source packages (mysql-dfsg, mysql-dfsg-4.1, mysql-dfsg-5.0), 12 status rows across 4 suites (dapper, edgy, feisty, upstream): not-affected 4, needs-triage 3, released 3, DNE 2. https://ubuntu.com/security/CVE-2006-1518

Affected software / configurations for CVE-2006-1518

Vendor Product Version Raw CPE
mysql mysql 5.0.1 cpe:2.3:a:mysql:mysql:5.0.1:*:*:*:*:*:*:*
mysql mysql 5.0.2 cpe:2.3:a:mysql:mysql:5.0.2:*:*:*:*:*:*:*
mysql mysql 5.0.3 cpe:2.3:a:mysql:mysql:5.0.3:*:*:*:*:*:*:*
mysql mysql 5.0.4 cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*
mysql mysql 5.0.5 cpe:2.3:a:mysql:mysql:5.0.5:*:*:*:*:*:*:*
mysql mysql 5.0.10 cpe:2.3:a:mysql:mysql:5.0.10:*:*:*:*:*:*:*
mysql mysql 5.0.15 cpe:2.3:a:mysql:mysql:5.0.15:*:*:*:*:*:*:*
mysql mysql 5.0.16 cpe:2.3:a:mysql:mysql:5.0.16:*:*:*:*:*:*:*
mysql mysql 5.0.17 cpe:2.3:a:mysql:mysql:5.0.17:*:*:*:*:*:*:*
mysql mysql 5.0.20 cpe:2.3:a:mysql:mysql:5.0.20:*:*:*:*:*:*:*
oracle mysql 5.0.0 cpe:2.3:a:oracle:mysql:5.0.0:alpha:*:*:*:*:*:*
oracle mysql 5.0.3 cpe:2.3:a:oracle:mysql:5.0.3:beta:*:*:*:*:*:*
oracle mysql 5.0.6 cpe:2.3:a:oracle:mysql:5.0.6:*:*:*:*:*:*:*
oracle mysql 5.0.7 cpe:2.3:a:oracle:mysql:5.0.7:*:*:*:*:*:*:*
oracle mysql 5.0.8 cpe:2.3:a:oracle:mysql:5.0.8:*:*:*:*:*:*:*
oracle mysql 5.0.9 cpe:2.3:a:oracle:mysql:5.0.9:*:*:*:*:*:*:*
oracle mysql 5.0.11 cpe:2.3:a:oracle:mysql:5.0.11:*:*:*:*:*:*:*
oracle mysql 5.0.12 cpe:2.3:a:oracle:mysql:5.0.12:*:*:*:*:*:*:*
oracle mysql 5.0.13 cpe:2.3:a:oracle:mysql:5.0.13:*:*:*:*:*:*:*
oracle mysql 5.0.14 cpe:2.3:a:oracle:mysql:5.0.14:*:*:*:*:*:*:*
oracle mysql 5.0.18 cpe:2.3:a:oracle:mysql:5.0.18:*:*:*:*:*:*:*
oracle mysql 5.0.19 cpe:2.3:a:oracle:mysql:5.0.19:*:*:*:*:*:*:*

References for CVE-2006-1518

URL Tags
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=365939 Patch
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html Patch
http://lists.suse.com/archive/suse-security-announce/2006-Jun/0011.html
http://secunia.com/advisories/19929 Patch Vendor Advisory
http://secunia.com/advisories/20241
http://secunia.com/advisories/20253
http://secunia.com/advisories/20333
http://secunia.com/advisories/20457
http://secunia.com/advisories/20762
http://securityreason.com/securityalert/839
http://securitytracker.com/id?1016016 Patch
http://www.debian.org/security/2006/dsa-1071
http://www.debian.org/security/2006/dsa-1073
http://www.debian.org/security/2006/dsa-1079
http://www.kb.cert.org/vuls/id/602457 Patch Third Party Advisory US Government Resource
http://www.novell.com/linux/security/advisories/2006-06-02.html
http://www.securityfocus.com/archive/1/432734/100/0/threaded
http://www.securityfocus.com/bid/17780
http://www.vupen.com/english/advisories/2006/1633
http://www.wisec.it/vulns.php?page=8 Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/26232
cvelogic Threat Intelligence