Lucene search

[email protected]NVD:CVE-2005-0004

HistoryApr 14, 2005 - 4:00 a.m.

CVE-2005-0004

2005-04-1404:00:00

CWE-59

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.001

Percentile

26.5%

JSON

The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.

Affected configurations

NVD

Node

oraclemysqlRange4.0.0–4.0.23

oraclemysqlRange4.1.0–4.1.10

oraclemysqlRange5.0.0–5.0.3

Node

debiandebian_linuxMatch3.0

Node

mariadbmariadbRange5.5.0–5.5.66

References

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000947

lists.mysql.com/internals/20600

marc.info/?l=bugtraq&m=110608297217224&w=2

mysql.osuosl.org/doc/mysql/en/News-4.1.10.html

secunia.com/advisories/13867

sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1

www.debian.org/security/2005/dsa-647

www.mandriva.com/security/advisories?name=MDKSA-2005:036

www.securityfocus.com/bid/12277

exchange.xforce.ibmcloud.com/vulnerabilities/18922

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.001

Percentile

26.5%

JSON

Related for NVD:CVE-2005-0004

cve1 cvelist1 openvas7 debian2 nessus10 f51 freebsd1 ubuntucve1 ubuntu1 osv1 gentoo1