Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2007-5969

Опубликовано: 10 дек. 2007
Источник: nvd
CVSS2: 7.1
EPSS Низкий

Описание

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mysql:mysql_server:5.1.22:*:*:*:*:*:*:*
cpe:2.3:a:mysql:mysql_server:6.0:*:*:*:*:*:*:*
cpe:2.3:a:mysql:mysql_server:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mysql:mysql_server:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mysql:mysql_server:6.0.3:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:mysql:community_server:*:*:*:*:*:*:*:*
Версия до 5.0.50 (включая)
cpe:2.3:a:mysql:community_server:5.0.41:*:*:*:*:*:*:*
cpe:2.3:a:mysql:community_server:5.0.44:*:*:*:*:*:*:*
cpe:2.3:a:mysql:community_server:5.0.45:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:a:mysql:mysql_enterprise_server:5.0.50:*:*:*:*:*:*:*

EPSS

Процентиль: 79%
0.01276
Низкий

7.1 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2007-5969

ubuntu
больше 17 лет назад

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

redhat логотип

CVE-2007-5969

redhat
больше 17 лет назад

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

debian логотип

CVE-2007-5969

debian
больше 17 лет назад

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x be ...

github логотип

GHSA-34f4-qcwh-g2jj

github
около 3 лет назад

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

oracle-oval логотип

ELSA-2007-1155

oracle-oval
больше 17 лет назад

ELSA-2007-1155: Important: mysql security update (IMPORTANT)

EPSS

Процентиль: 79%
0.01276
Низкий

7.1 High

CVSS2

Дефекты

CWE-264