Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2005-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2005-070.NASL
HistoryApr 13, 2005 - 12:00 a.m.

Mandrake Linux Security Advisory : MySQL (MDKSA-2005:070)

2005-04-1300:00:00
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.
www.tenable.com
11

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

28.6%

JSON

A vulnerability in MySQL would allow a user with grant privileges to a database with a name containing an underscore character (‘_’) to have the ability to grant privileges to other databases with similar names.
This problem was previously discovered and fixed, but a new case where the problem still existed was recently discovered.

The updated packages have been patched to correct this issue.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2005:070. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(18032);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2004-0957");
  script_xref(name:"MDKSA", value:"2005:070");

  script_name(english:"Mandrake Linux Security Advisory : MySQL (MDKSA-2005:070)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A vulnerability in MySQL would allow a user with grant privileges to a
database with a name containing an underscore character ('_') to have
the ability to grant privileges to other databases with similar names.
This problem was previously discovered and fixed, but a new case where
the problem still existed was recently discovered.

The updated packages have been patched to correct this issue."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-Max");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-bench");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64mysql12");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64mysql12-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libmysql12");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libmysql12-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/04/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2005/04/13");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK10.0", reference:"MySQL-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"MySQL-Max-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"MySQL-bench-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"MySQL-client-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"MySQL-common-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64mysql12-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64mysql12-devel-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libmysql12-4.0.18-1.5.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libmysql12-devel-4.0.18-1.5.100mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK10.1", reference:"MySQL-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"MySQL-Max-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"MySQL-bench-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"MySQL-client-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"MySQL-common-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64mysql12-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64mysql12-devel-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libmysql12-4.0.20-3.4.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libmysql12-devel-4.0.20-3.4.101mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxmysqlp-cpe:/a:mandriva:linux:mysql
mandrivalinuxmysql-maxp-cpe:/a:mandriva:linux:mysql-max
mandrivalinuxmysql-benchp-cpe:/a:mandriva:linux:mysql-bench
mandrivalinuxmysql-clientp-cpe:/a:mandriva:linux:mysql-client
mandrivalinuxmysql-commonp-cpe:/a:mandriva:linux:mysql-common
mandrivalinuxlib64mysql12p-cpe:/a:mandriva:linux:lib64mysql12
mandrivalinuxlib64mysql12-develp-cpe:/a:mandriva:linux:lib64mysql12-devel
mandrivalinuxlibmysql12p-cpe:/a:mandriva:linux:libmysql12
mandrivalinuxlibmysql12-develp-cpe:/a:mandriva:linux:libmysql12-devel
mandrakesoftmandrake_linux10.0cpe:/o:mandrakesoft:mandrake_linux:10.0
Rows per page:
1-10 of 111

Related

nessus 9
openvas 10
ubuntucve 1
freebsd 1
cve 1
cvelist 1
ubuntu 2
nvd 1
debian 2
osv 1
redhat 3
nessus
nessus
Ubuntu 4.10 : mysql-dfsg vulnerability (USN-109-1)
2006-01-15 00:00:00
FreeBSD : mysql -- GRANT access restriction problem (01c231cd-4393-11d9-8bb9-00065be4b5b6)
2005-07-13 00:00:00
MySQL < 4.0.21 Multiple Vulnerabilities
2004-10-17 00:00:00
openvas
openvas
FreeBSD Ports: mysql-server
2008-09-04 00:00:00
FreeBSD Ports: mysql-server
2008-09-04 00:00:00
Ubuntu: Security Advisory (USN-109-1)
2022-08-26 00:00:00
ubuntucve
ubuntucve
CVE-2004-0957
2005-02-09 00:00:00
freebsd
freebsd
mysql -- GRANT access restriction problem
2004-03-29 00:00:00
cve
cve
CVE-2004-0957
2005-02-09 05:00:00
cvelist
cvelist
CVE-2004-0957
2004-10-21 04:00:00
ubuntu
ubuntu
MySQL vulnerability
2005-04-06 00:00:00
mysql vulnerabilities
2004-11-25 00:00:00
nvd
nvd
CVE-2004-0957
2005-02-09 05:00:00
debian
debian
[SECURITY] [DSA 707-1] New mysql packages fix several vulnerabilities
2005-04-13 14:45:01
[SECURITY] [DSA 707-1] New mysql packages fix several vulnerabilities
2005-04-13 14:45:01
osv
osv
mysql - several
2005-04-13 00:00:00
redhat
redhat
(RHSA-2004:611) mysql-server security update
2004-10-27 00:00:00
(RHSA-2004:597) mysql security update
2004-10-20 00:00:00
(RHSA-2004:569) mysql security update
2004-10-20 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

28.6%

JSON
Related for MANDRAKE_MDKSA-2005-070.NASL
nessus9openvas10ubuntucve1freebsd1cve1cvelist1ubuntu2nvd1debian2osv1redhat3