Vulnerability Details CVE-2005-0004
The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.9%
CVSS Severity
CVSS v2 Score 4.6
References
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000947
- http://lists.mysql.com/internals/20600
- http://marc.info/?l=bugtraq&m=110608297217224&w=2
- http://mysql.osuosl.org/doc/mysql/en/News-4.1.10.html
- http://secunia.com/advisories/13867
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1
- http://www.debian.org/security/2005/dsa-647
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:036
- http://www.securityfocus.com/bid/12277
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18922
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000947
- http://lists.mysql.com/internals/20600
- http://marc.info/?l=bugtraq&m=110608297217224&w=2
- http://mysql.osuosl.org/doc/mysql/en/News-4.1.10.html
- http://secunia.com/advisories/13867
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1
- http://www.debian.org/security/2005/dsa-647
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:036
- http://www.securityfocus.com/bid/12277
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18922
Products affected by CVE-2005-0004
-
cpe:2.3:a:mariadb:mariadb:5.5.0
-
cpe:2.3:a:mariadb:mariadb:5.5.20
-
cpe:2.3:a:mariadb:mariadb:5.5.21
-
cpe:2.3:a:mariadb:mariadb:5.5.22
-
cpe:2.3:a:mariadb:mariadb:5.5.23
-
cpe:2.3:a:mariadb:mariadb:5.5.24
-
cpe:2.3:a:mariadb:mariadb:5.5.25
-
cpe:2.3:a:mariadb:mariadb:5.5.27
-
cpe:2.3:a:mariadb:mariadb:5.5.28
-
cpe:2.3:a:mariadb:mariadb:5.5.28a
-
cpe:2.3:a:mariadb:mariadb:5.5.33
-
cpe:2.3:a:mariadb:mariadb:5.5.34
-
cpe:2.3:a:mariadb:mariadb:5.5.35
-
cpe:2.3:a:mariadb:mariadb:5.5.40
-
cpe:2.3:a:mariadb:mariadb:5.5.43
-
cpe:2.3:a:mariadb:mariadb:5.5.46
-
cpe:2.3:a:mariadb:mariadb:5.5.47
-
cpe:2.3:a:mariadb:mariadb:5.5.48
-
cpe:2.3:a:mariadb:mariadb:5.5.49
-
cpe:2.3:a:mariadb:mariadb:5.5.50
-
cpe:2.3:a:mariadb:mariadb:5.5.51
-
cpe:2.3:a:mariadb:mariadb:5.5.54
-
cpe:2.3:a:mariadb:mariadb:5.5.55
-
cpe:2.3:a:mariadb:mariadb:5.5.56
-
cpe:2.3:a:mariadb:mariadb:5.5.57
-
cpe:2.3:a:mariadb:mariadb:5.5.58
-
cpe:2.3:a:mariadb:mariadb:5.5.59
-
cpe:2.3:a:mariadb:mariadb:5.5.60
-
cpe:2.3:a:mariadb:mariadb:5.5.61
-
cpe:2.3:a:oracle:mysql:4.0.0
-
cpe:2.3:a:oracle:mysql:4.0.1
-
cpe:2.3:a:oracle:mysql:4.0.10
-
cpe:2.3:a:oracle:mysql:4.0.11
-
cpe:2.3:a:oracle:mysql:4.0.12
-
cpe:2.3:a:oracle:mysql:4.0.13
-
cpe:2.3:a:oracle:mysql:4.0.14
-
cpe:2.3:a:oracle:mysql:4.0.15
-
cpe:2.3:a:oracle:mysql:4.0.16
-
cpe:2.3:a:oracle:mysql:4.0.17
-
cpe:2.3:a:oracle:mysql:4.0.18
-
cpe:2.3:a:oracle:mysql:4.0.19
-
cpe:2.3:a:oracle:mysql:4.0.2
-
cpe:2.3:a:oracle:mysql:4.0.20
-
cpe:2.3:a:oracle:mysql:4.0.21
-
cpe:2.3:a:oracle:mysql:4.0.22
-
cpe:2.3:a:oracle:mysql:4.0.3
-
cpe:2.3:a:oracle:mysql:4.0.4
-
cpe:2.3:a:oracle:mysql:4.0.5
-
cpe:2.3:a:oracle:mysql:4.0.5a
-
cpe:2.3:a:oracle:mysql:4.0.6
-
cpe:2.3:a:oracle:mysql:4.0.7
-
cpe:2.3:a:oracle:mysql:4.0.8
-
cpe:2.3:a:oracle:mysql:4.0.9
-
cpe:2.3:a:oracle:mysql:4.1.0
-
cpe:2.3:a:oracle:mysql:4.1.1
-
cpe:2.3:a:oracle:mysql:4.1.2
-
cpe:2.3:a:oracle:mysql:4.1.3
-
cpe:2.3:a:oracle:mysql:4.1.4
-
cpe:2.3:a:oracle:mysql:4.1.5
-
cpe:2.3:a:oracle:mysql:4.1.6
-
cpe:2.3:a:oracle:mysql:4.1.7
-
cpe:2.3:a:oracle:mysql:4.1.8
-
cpe:2.3:a:oracle:mysql:4.1.9
-
cpe:2.3:a:oracle:mysql:5.0.0
-
cpe:2.3:a:oracle:mysql:5.0.1
-
cpe:2.3:a:oracle:mysql:5.0.2
-
cpe:2.3:o:debian:debian_linux:3.0