MySQL < 4.0.21 mysqlhotcopy Insecure Temporary File Creation

This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.


Synopsis :

The remote database server is affected by an insecure temporary file
creation vulnerability.

Description :

You are running a version of MySQL which is older than version 4.0.21.

Mysqlhotcopy is reported to contain an insecure temporary file
creation vulnerability. The result of this is that temporary files
created by the application may use predictable filenames.

A local attacker could potentially exploit this vulnerability to
execute symbolic link file overwrite attacks.

*** Note : this vulnerability is local only

Solution :

Upgrade to the latest version of MySQL 4.0.21 or newer.

Risk factor :

Medium / CVSS Base Score : 4.6
(CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 4.0
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: Databases

Nessus Plugin ID: 14343 ()

Bugtraq ID: 10969

CVE ID: CVE-2004-0457