Vulnerability & Exploit Database

Back to search

Gentoo Linux: CVE-2008-2079: MySQL: Privilege bypass

Severity CVSS Published Added Modified
5 (AV:N/AC:H/Au:S/C:P/I:P/A:P) May 05, 2008 October 30, 2017 October 30, 2017


MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and 6.0.x before 6.0.5 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are within the MySQL home data directory, which can point to tables that are created in the future.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now




Related Vulnerabilities