EIP-2026-102930

PRE-CVE

MySQL 4.x/5.0 (Linux) - User-Defined Function (UDF) Dynamic Library (2)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102930. PoCs published by Marco Ivaldi.

AI-analyzed exploit summary This is a functional MySQL User Defined Function (UDF) exploit that allows local privilege escalation by executing system commands as the MySQL user (often root). It bypasses UDF security restrictions by including auxiliary symbols and demonstrates command execution via a custom `do_system` function.

Description

MySQL 4.x/5.0 (Linux) - User-Defined Function (UDF) Dynamic Library (2)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Marco Ivaldi · clocallinux

https://www.exploit-db.com/exploits/1518

View Code ZIP pw:eip

This is a functional MySQL User Defined Function (UDF) exploit that allows local privilege escalation by executing system commands as the MySQL user (often root). It bypasses UDF security restrictions by including auxiliary symbols and demonstrates command execution via a custom `do_system` function.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: MySQL 4.1.14 (and potentially other versions)

Auth required

Prerequisites: MySQL running with root privileges · Ability to load custom UDFs · Valid MySQL credentials

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026