MySQL Rename Table Bug Lets Remote Authenticated Users Modify System Table Information
|
|
SecurityTracker Alert ID: 1019060
|
|
SecurityTracker URL: http://securitytracker.com/id?1019060
|
|
CVE Reference: CVE-2007-5969
(Links to External Site)
|
Updated: Mar 26 2008
|
Original Entry Date: Dec 7 2007
|
Impact: Modification of system information, Modification of user information
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): prior to 5.0.51
|
Description: A vulnerability was reported in MySQL. A remote authenticated user can modify system table information.
A remote authenticated user can invoke the RENAME TABLE command with specific DATA DIRECTORY and INDEX DIRECTORY options to replace a symlinked file, overwriting system table information.
|
Impact: A remote authenticated user can modify system table information.
|
Solution: The vendor has issued a fixed version (4.1.24, 5.0.51).
The MySQL advisory is available at:
http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.html
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html
|
Vendor URL: www.mysql.com/ (Links to External Site)
|
Cause: Access control error
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Thu, 6 Dec 2007 23:52:44 -0500
Subject: MySQL
|
http://forums.mysql.com/read.php?3,186931,186931
CVE-2007-5969
|
|
