7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:C/I:C/A:C
0.028 Low
EPSS
Percentile
90.7%
MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before
5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a
table relies on symlinks created through explicit DATA DIRECTORY and INDEX
DIRECTORY options, allows remote authenticated users to overwrite system
table information and gain privileges via a RENAME TABLE statement that
changes the symlink to point to an existing file.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | mysql-dfsg-5.0 | <Β 5.0.22-0ubuntu6.06.6 | UNKNOWN |
ubuntu | 6.10 | noarch | mysql-dfsg-5.0 | <Β 5.0.24a-9ubuntu2.2 | UNKNOWN |
ubuntu | 7.04 | noarch | mysql-dfsg-5.0 | <Β 5.0.38-0ubuntu1.2 | UNKNOWN |
ubuntu | 7.10 | noarch | mysql-dfsg-5.0 | <Β 5.0.45-1ubuntu3.1 | UNKNOWN |