Mysql@5.0.4 Security Vulnerabilities and Issues — Mysql@5.0.4 CVE List

Lucene search

MysqlMysql5.0.4

3 matches found

CVE•added 2005/05/17 4:0 a.m.•73 views

CVE-2005-1636

mysql_install_db in MySQL 4.1.x before 4.1.12 and 5.x up to 5.0.4 creates the mysql_install_db.X file with a predictable filename and insecure permissions, which allows local users to execute arbitrary SQL commands by modifying the file's contents.

4.6CVSS7AI score0.00022EPSS

CVE•added 2005/08/16 4:0 a.m.•63 views

CVE-2005-2558

Stack-based buffer overflow in the init_syms function in MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta allows remote authenticated users who can create user-defined functions to execute arbitrary code via a long function_name field.

4.6CVSS7.3AI score0.05071EPSS

CVE•added 2005/08/16 4:0 a.m.•59 views

CVE-2005-2573

The mysql_create_function function in sql_udf.cc for MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta, when running on Windows, uses an incomplete blacklist in a directory traversal check, which allows attackers to include arbitrary files via the backslash () character.

5CVSS6.6AI score0.00507EPSS