CVE-2005-0711

LOW

Description

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.

References

http://archives.neohapsis.com/archives/vulnwatch/2005-q1/0082.html

http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html

http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html

http://sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1

http://www.debian.org/security/2005/dsa-707

http://www.gentoo.org/security/en/glsa/glsa-200503-19.xml

http://www.mandriva.com/security/advisories?name=MDKSA-2005:060

http://www.novell.com/linux/security/advisories/2005_19_mysql.html

http://www.redhat.com/support/errata/RHSA-2005-334.html

http://www.redhat.com/support/errata/RHSA-2005-348.html

http://www.securityfocus.com/bid/12781

http://www.trustix.org/errata/2005/0009/

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9591

https://usn.ubuntu.com/96-1/

Details

Source: MITRE

Published: 2005-05-02

Updated: 2019-12-17

Type: NVD-CWE-Other

Risk Information

CVSS v2.0

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:mysql:mysql:4.1.0:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:4.1.3:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:4.1.10:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:3.23.49:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.5a:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.7:gamma:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.8:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.8:gamma:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.9:gamma:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.10:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.11:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.11:gamma:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.12:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.13:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.14:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.15:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.18:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.20:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.21:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.0.23:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.1.0:alpha:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.1.2:alpha:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.1.3:beta:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.1.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:4.1.5:*:*:*:*:*:*:*

Tenable Plugins

View all (17 total)

ID	Name	Product	Family	Severity
107863	Solaris 10 (x86) : 120293-02	Nessus	Solaris Local Security Checks	high
107361	Solaris 10 (sparc) : 120292-02	Nessus	Solaris Local Security Checks	high
21926	CentOS 3 : mysql-server (CESA-2005:348)	Nessus	CentOS Local Security Checks	medium
20722	Ubuntu 4.10 : mysql-dfsg vulnerabilities (USN-96-1)	Nessus	Ubuntu Local Security Checks	medium
19463	Mac OS X Multiple Vulnerabilities (Security Update 2005-007)	Nessus	MacOS X Local Security Checks	critical
19452	Solaris 10 (x86) : 120293-02 (deprecated)	Nessus	Solaris Local Security Checks	high
19447	Solaris 10 (sparc) : 120292-02 (deprecated)	Nessus	Solaris Local Security Checks	high
18956	FreeBSD : mysql-server -- multiple remote vulnerabilities (619ef337-949a-11d9-b813-00d05964249f)	Nessus	FreeBSD Local Security Checks	medium
18042	Debian DSA-707-1 : mysql - several vulnerabilities	Nessus	Debian Local Security Checks	medium
17981	RHEL 3 : mysql-server (RHSA-2005:348)	Nessus	Red Hat Local Security Checks	medium
17646	RHEL 2.1 / 3 / 4 : mysql (RHSA-2005:334)	Nessus	Red Hat Local Security Checks	medium
17618	SUSE-SA:2005:019: mysql	Nessus	SuSE Local Security Checks	medium
17601	Mandrake Linux Security Advisory : MySQL (MDKSA-2005:060)	Nessus	Mandriva Local Security Checks	high
17344	GLSA-200503-19 : MySQL: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	medium
17313	MySQL < 4.0.24 / 4.1.10a Multiple Vulnerabilities	Nessus	Databases	medium
2696	Oracle MySQL Multiple Vulnerabilities	Nessus Network Monitor	Database	medium
801130	MySQL Multiple Vulnerabilities	Log Correlation Engine	Database	medium