CVE-2009-4030

medium

New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.

References

http://bugs.mysql.com/bug.php?id=32167

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html

http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html

http://lists.mysql.com/commits/89940

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html

http://marc.info/?l=oss-security&m=125908040022018&w=2

http://marc.info/?l=oss-security&m=125908080222685&w=2

http://secunia.com/advisories/38517

http://secunia.com/advisories/38573

http://support.apple.com/kb/HT4077

http://ubuntu.com/usn/usn-897-1

http://www.debian.org/security/2010/dsa-1997

http://www.openwall.com/lists/oss-security/2009/11/19/3

http://www.openwall.com/lists/oss-security/2009/11/24/6

http://www.redhat.com/support/errata/RHSA-2010-0109.html

http://www.redhat.com/support/errata/RHSA-2010-0110.html

http://www.ubuntu.com/usn/USN-1397-1

http://www.vupen.com/english/advisories/2010/1107

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156

Details

Source: MITRE

Published: 2009-11-30

Updated: 2019-12-17

Type: CWE-59

Risk Information

CVSS v2

Base Score: 4.4

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.4

Severity: MEDIUM

Vulnerable Software

Configuration 1

cpe:2.3:a:mysql:mysql:5.1.5:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.1.23:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.1.32:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.8:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.18:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.19:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.20:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.21:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.22:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.1.30:*:*:*:*:*:*:*

Tenable Plugins

View all (28 total)

ID	Name	Product	Family	Severity
67998	Oracle Linux 4 : mysql (ELSA-2010-0110)	Nessus	Oracle Linux Local Security Checks	high
67997	Oracle Linux 5 : mysql (ELSA-2010-0109)	Nessus	Oracle Linux Local Security Checks	medium
63599	Scientific Linux Security Update : mysql on SL5.x i386/x86_64 (20130108)	Nessus	Scientific Linux Local Security Checks	medium
62927	MySQL 5.0.95 MyISAM Table Symbolic Link Local Restriction Bypass	Nessus	Databases	medium
60736	Scientific Linux Security Update : mysql on SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	medium
60735	Scientific Linux Security Update : mysql on SL4.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
58325	Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities (USN-1397-1)	Nessus	Ubuntu Local Security Checks	high
50935	SuSE 11 Security Update : MySQL (SAT Patch Number 2317)	Nessus	SuSE Local Security Checks	medium
50523	SuSE9 Security Update : MySQL (YOU Patch Number 12661)	Nessus	SuSE Local Security Checks	medium
49903	SuSE 10 Security Update : MySQL (ZYPP Patch Number 6899)	Nessus	SuSE Local Security Checks	high
48166	Mandriva Linux Security Advisory : mysql (MDVSA-2010:012)	Nessus	Mandriva Local Security Checks	medium
46235	openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2010:0198-2)	Nessus	SuSE Local Security Checks	medium
46232	openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2010:0198-2)	Nessus	SuSE Local Security Checks	medium
46229	openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2010:0198-2)	Nessus	SuSE Local Security Checks	medium
46220	openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2010:0198-1)	Nessus	SuSE Local Security Checks	medium
46219	openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2010:0198-1)	Nessus	SuSE Local Security Checks	medium
46218	openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2010:0198-1)	Nessus	SuSE Local Security Checks	medium
5489	Mac OS X < 10.6.3 Multiple Vulnerabilities	Nessus Network Monitor	Generic	critical
45372	Mac OS X 10.6.x < 10.6.3 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	critical
45107	SuSE 10 Security Update : MySQL (ZYPP Patch Number 6897)	Nessus	SuSE Local Security Checks	high
44948	CentOS 5 : mysql (CESA-2010:0109)	Nessus	CentOS Local Security Checks	medium
44861	Debian DSA-1997-1 : mysql-dfsg-5.0 - several vulnerabilities	Nessus	Debian Local Security Checks	high
44647	CentOS 4 : mysql (CESA-2010:0110)	Nessus	CentOS Local Security Checks	high
44635	RHEL 4 : mysql (RHSA-2010:0110)	Nessus	Red Hat Local Security Checks	high
44634	RHEL 5 : mysql (RHSA-2010:0109)	Nessus	Red Hat Local Security Checks	medium
44585	Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities (USN-897-1)	Nessus	Ubuntu Local Security Checks	high
44043	Mandriva Linux Security Advisory : mysql (MDVSA-2010:011)	Nessus	Mandriva Local Security Checks	medium
42900	MySQL 5.1 < 5.1.41 Multiple Vulnerabilities	Nessus	Databases	medium

CVE-2009-4030

medium

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

Vulnerable Software

Configuration 1

Tenable Plugins

high

medium

medium

medium

medium

high

high

medium

medium

high

medium

medium

medium

medium

medium

medium

medium

critical

critical

high

medium

high

high

high

medium

high

medium

medium