FreeBSD : mysql -- privilege escalation and overwrite of the system table information (8c451386-dff3-11dd-a765-0030843d3802)

high Nessus Plugin ID 35339

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

MySQL reports :

Using RENAME TABLE against a table with explicit DATA DIRECTORY and INDEX DIRECTORY options can be used to overwrite system table information by replacing the symbolic link points. the file to which the symlink points.

Solution

Update the affected packages.

See Also

https://bugs.mysql.com/bug.php?id=32111

http://www.nessus.org/u?ad404a0e

Plugin Details

Severity: High

ID: 35339

File Name: freebsd_pkg_8c451386dff311dda7650030843d3802.nasl

Version: 1.18

Type: local

Published: 1/12/2009

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.1

Temporal Score: 5.3

Vector: CVSS2#AV:N/AC:H/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:mysql-server, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Ease: No known exploits are available

Patch Publication Date: 1/11/2009

Vulnerability Publication Date: 11/14/2007

Reference Information

CVE: CVE-2007-5969

BID: 26765

CWE: 264