Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.29 views

FreeBSD : mysql -- mysqlhotcopy insecure temporary file creation (0c4d5973-f2ab-11d8-9837-000c41e2cdad)

According to Christian Hammers : mysqlhotcopy created temporary files in /tmp which had predictable filenames and such could be used for a tempfile run attack. Jeroen van Wolffelaar is credited with discovering the issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

4.6CVSS5.3AI score0.00515EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.30 views

FreeBSD Ports: mysql-scripts

The remote host is missing an update to the system as announced in the referenced advisory. VID 0c4d5973-f2ab-11d8-9837-000c41e2cdad OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

4.6CVSS6.3AI score0.00515EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2004/12/23 5:0 a.m.3 views

CVE-2004-0973

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-0457. Reason: This candidate is a reservation duplicate of CVE-2004-0457. Notes: All CVE users should reference CVE-2004-0457 instead of this candidate. All references and descriptions in this candidate have been removed to...

4.6CVSS5.5AI score0.00515EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.31 views

Debian DSA-540-1 : mysql - insecure file creation

Jeroen van Wolffelaar discovered an insecure temporary file vulnerability in the mysqlhotcopy script when using the scp method which is part of the mysql-server package. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

4.6CVSS5.3AI score0.00515EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2004/09/28 4:0 a.m.26 views

CVE-2004-0457

The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

4.6CVSS5.8AI score0.00515EPSS
Exploits0References1
CVE
CVE
added 2004/08/19 4:0 a.m.69 views

CVE-2004-0457

CVE-2004-0457: The mysqlhotcopy script in MySQL

4.6CVSS5.9AI score0.00515EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder