Lucene search
Ubuntu.comUB:CVE-2005-1636HistoryMay 17, 2005 - 12:00 a.m.
CVE-2005-1636
2005-05-1700:00:00
ubuntu.com
ubuntu.com
21
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.001
Percentile
28.0%
mysql_install_db in MySQL 4.1.x before 4.1.12 and 5.x up to 5.0.4 creates
the mysql_install_db.X file with a predictable filename and insecure
permissions, which allows local users to execute arbitrary SQL commands by
modifying the file’s contents.
Related
cvelist
cvelist
CVE-2005-1636
2005-05-17 04:00:00
redhat
redhat
(RHSA-2005:685) mysql security update
2005-10-05 00:00:00
cve
cve
CVE-2005-1636
2005-05-17 04:00:00
openvas
openvas
Debian: Security Advisory (DSA-783-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 783-1 (mysql-dfsg-4.1)
2008-01-17 00:00:00
FreeBSD Ports: mysql-server
2008-09-04 00:00:00
nessus
nessus
FreeBSD : mysql-server -- insecure temporary file creation (eeae6cce-d05c-11d9-9aed-000e0c2e438a)
2005-07-13 00:00:00
CentOS 4 : mysql (CESA-2005:685)
2013-06-29 00:00:00
MDKSA-2006:045 : MySQL
2006-02-22 00:00:00
nvd
nvd
CVE-2005-1636
2005-05-17 04:00:00
osv
osv
mysql-dfsg-4.1 - insecure temporary file
2005-08-24 00:00:00
freebsd
freebsd
mysql-server -- insecure temporary file creation
2005-05-07 00:00:00
centos
centos
mysql security update
2005-10-05 16:19:24
debian
debian
[SECURITY] [DSA 783-1] New mysql packages fix insecure temporary file
2005-08-24 06:53:37
[SECURITY] [DSA 783-1] New mysql packages fix insecure temporary file
2005-08-24 06:53:37
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.001
Percentile
28.0%
Related for UB:CVE-2005-1636