MySQL Bugs Let Remote Authenticated Users Gain Elevated Privileges and Deny Service
|
|
SecurityTracker Alert ID: 1019085
|
|
SecurityTracker URL: http://securitytracker.com/id?1019085
|
|
CVE Reference: CVE-2007-6303
, CVE-2007-6304
(Links to External Site)
|
Date: Dec 12 2007
|
Impact: Denial of service via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): 5.0.x before 5.0.52, 5.1.x before 5.1.23, and 6.0.x before 6.0.4
|
Description: Two vulnerabilities were reported in MySQL. A remote authenticated user can gain elevated privileges. A remote authenticated user can cause denial of service.
A remote authenticated user can send a specially crafted sequence of statements including a CREATE SQL SECURITY DEFINER VIEW statement
and an ALTER VIEW statement to gain elevated privileges [CVE-2007-6303].
A remote authenticated user can send specially crafted
SHOW TABLE STATUS query to cause the target daemon to crash [CVE-2007-6304].
|
Impact: A remote authenticated user can gain elevated privileges.
A remote authenticated user can cause the target daemon to crash.
|
Solution: The vendor has issued fixed versions (5.0.52, 5.1.23, and 6.0.4).
The MySQL advisories are available at:
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-5
2.html
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-23.html
http://dev.mysql.com/doc/refman/6.0/en/news-6-0-4.html
|
Vendor URL: www.mysql.com/ (Links to External Site)
|
Cause: Access control error, Exception handling error
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Tue, 11 Dec 2007 23:08:58 -0500
Subject: MySQL
|
CVE-2007-6303
CVE-2007-6304
|
|
