Vulnerability & Exploit Database

Back to search

FreeBSD: mysql -- privilege escalation and overwrite of the system table information (CVE-2007-5969)

Severity CVSS Published Added Modified
7 (AV:N/AC:H/Au:S/C:C/I:C/A:C) December 09, 2007 May 07, 2014 February 12, 2015

Description

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

freebsd-upgrade-package-mysql-server

Related Vulnerabilities