Mandrake Linux Security Advisory : MySQL (MDKSA-2005:036)
Medium Nessus Plugin ID 16379
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA temporary file vulnerability in the mysqlaccess script in MySQL was discovered by Javier Fernandez-Sanguino Pena. This flaw could allow an unprivileged user to let root overwrite arbitrary files via a symlink attack. It could also be used to view the contents of a temporary file which could contain sensitive information.
The updated packages have been patched to prevent these problems.
SolutionUpdate the affected packages.