CVE-2000-0045
MySQL - Unauthenticated Password Modification via GRANT Privilege
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-0045. PoCs published by Viktor Fougstedt.
AI-analyzed exploit summary This exploit leverages the default 'test' account in MySQL, which has GRANT privileges and no password, to change the password of the MySQL superuser 'root'. It demonstrates how an attacker can gain full control over the MySQL database by altering the root password.
Description
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
Exploits (1)
This exploit leverages the default 'test' account in MySQL, which has GRANT privileges and no password, to change the password of the MySQL superuser 'root'. It demonstrates how an attacker can gain full control over the MySQL database by altering the root password.