Vulnerability Details CVE-2005-0709
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.371
EPSS Ranking 97.0%
CVSS Severity
CVSS v2 Score 4.6
References
- http://archives.neohapsis.com/archives/vulnwatch/2005-q1/0084.html
- http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
- http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
- http://marc.info/?l=bugtraq&m=111066115808506&w=2
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1
- http://www.debian.org/security/2005/dsa-707
- http://www.gentoo.org/security/en/glsa/glsa-200503-19.xml
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:060
- http://www.novell.com/linux/security/advisories/2005_19_mysql.html
- http://www.redhat.com/support/errata/RHSA-2005-334.html
- http://www.redhat.com/support/errata/RHSA-2005-348.html
- http://www.securityfocus.com/bid/12781
- http://www.trustix.org/errata/2005/0009/
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10479
- https://usn.ubuntu.com/96-1/
- http://archives.neohapsis.com/archives/vulnwatch/2005-q1/0084.html
- http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
- http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
- http://marc.info/?l=bugtraq&m=111066115808506&w=2
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1
- http://www.debian.org/security/2005/dsa-707
- http://www.gentoo.org/security/en/glsa/glsa-200503-19.xml
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:060
- http://www.novell.com/linux/security/advisories/2005_19_mysql.html
- http://www.redhat.com/support/errata/RHSA-2005-334.html
- http://www.redhat.com/support/errata/RHSA-2005-348.html
- http://www.securityfocus.com/bid/12781
- http://www.trustix.org/errata/2005/0009/
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10479
- https://usn.ubuntu.com/96-1/
Products affected by CVE-2005-0709
-
cpe:2.3:a:mysql:mysql:4.1.0
-
cpe:2.3:a:mysql:mysql:4.1.10
-
cpe:2.3:a:mysql:mysql:4.1.3
-
cpe:2.3:a:oracle:mysql:3.23.49
-
cpe:2.3:a:oracle:mysql:4.0.0
-
cpe:2.3:a:oracle:mysql:4.0.1
-
cpe:2.3:a:oracle:mysql:4.0.10
-
cpe:2.3:a:oracle:mysql:4.0.11
-
cpe:2.3:a:oracle:mysql:4.0.12
-
cpe:2.3:a:oracle:mysql:4.0.13
-
cpe:2.3:a:oracle:mysql:4.0.14
-
cpe:2.3:a:oracle:mysql:4.0.15
-
cpe:2.3:a:oracle:mysql:4.0.18
-
cpe:2.3:a:oracle:mysql:4.0.2
-
cpe:2.3:a:oracle:mysql:4.0.20
-
cpe:2.3:a:oracle:mysql:4.0.21
-
cpe:2.3:a:oracle:mysql:4.0.23
-
cpe:2.3:a:oracle:mysql:4.0.3
-
cpe:2.3:a:oracle:mysql:4.0.4
-
cpe:2.3:a:oracle:mysql:4.0.5
-
cpe:2.3:a:oracle:mysql:4.0.5a
-
cpe:2.3:a:oracle:mysql:4.0.6
-
cpe:2.3:a:oracle:mysql:4.0.7
-
cpe:2.3:a:oracle:mysql:4.0.8
-
cpe:2.3:a:oracle:mysql:4.0.9
-
cpe:2.3:a:oracle:mysql:4.1.0
-
cpe:2.3:a:oracle:mysql:4.1.2
-
cpe:2.3:a:oracle:mysql:4.1.3
-
cpe:2.3:a:oracle:mysql:4.1.4
-
cpe:2.3:a:oracle:mysql:4.1.5