CVE-2007-5969

Severity

71%

Complexity

39%

Confidentiality

165%

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

CVSS 2.0 Base Score 7.1. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:S/C:C/I:C/A:C).

Overview

Type

MySQL MySQL Community Server

First reported 17 years ago

2007-12-10 19:46:00

Last updated 6 years ago

2018-10-15 21:48:00

Affected Software

MySQL MySQL Community Server 5.0.41

5.0.41

MySQL MySQL Community Server 5.0.44

5.0.44

MySQL MySQL Community Server 5.0.45

5.0.45

References

http://bugs.mysql.com/32111

http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.html

http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html

http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.html

http://forums.mysql.com/read.php?3,186931,186931

APPLE-SA-2008-10-09

[Announcements] 20071206 MySQL 5.0.51 has been released

Exploit, Vendor Advisory

SUSE-SR:2008:003

27981

Vendor Advisory

28025

Vendor Advisory

28040

Vendor Advisory

28063

Vendor Advisory

28099

Vendor Advisory

28108

Vendor Advisory

28128

Vendor Advisory

28343

Vendor Advisory

28559

Vendor Advisory

28838

Vendor Advisory

29706

Vendor Advisory

32222

Vendor Advisory

GLSA-200804-04

SSA:2007-348-01

http://support.apple.com/kb/HT3216

DSA-1451

MDKSA-2007:243

RHSA-2007:1155

Vendor Advisory

RHSA-2007:1157

Vendor Advisory

20080117 rPSA-2008-0018-1 mysql mysql-bench mysql-server

26765

31681

Patch

1019060

ADV-2007-4142

Vendor Advisory

ADV-2007-4198

Vendor Advisory

ADV-2008-0560

Vendor Advisory

ADV-2008-1000

Vendor Advisory

ADV-2008-2780

Vendor Advisory

https://issues.rpath.com/browse/RPL-1999

oval:org.mitre.oval:def:10509

USN-559-1

FEDORA-2007-4465

FEDORA-2007-4471

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.