PT-2005-1749 · Oracle+1 · Mysql Server+1

Stefano Di Paola

Published

2005-03-11

Updated

2019-12-17

CVE-2005-0710

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions MySQL versions 4.0.23 and earlier MySQL versions 4.1.x up to 4.1.10

Description The issue allows remote authenticated users with INSERT and DELETE privileges to bypass library path restrictions and execute arbitrary libraries. This is achieved by using INSERT INTO to modify the mysql.func table, which is processed by the udf init function.

Recommendations For MySQL versions 4.0.23 and earlier, update to a version later than 4.0.23 to resolve the issue. For MySQL versions 4.1.x up to 4.1.10, update to a version later than 4.1.10 to resolve the issue. As a temporary workaround, consider restricting INSERT and DELETE privileges to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0710

DSA-707-1

RHSA-2005:334

RHSA-2005_334

Affected Products

Mysql Server

Red Hat

PT-2005-1749 · Oracle+1 · Mysql Server+1

CVE-2005-0710

Related Identifiers

Affected Products

References · 24