|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200405-20] Insecure Temporary File Creation In MySQL Vulnerability Assessment Details
|
[GLSA-200405-20] Insecure Temporary File Creation In MySQL |
||
Insecure Temporary File Creation In MySQL Detailed Explanation for this Vulnerability Assessment The remote host is affected by the vulnerability described in GLSA-200405-20 (Insecure Temporary File Creation In MySQL) The MySQL bug reporting utility (mysqlbug) creates a temporary file to log bug reports to. A malicious local user with write access to the /tmp directory could create a symbolic link of the name mysqlbug-N pointing to a protected file, such as /etc/passwd, such that when mysqlbug creates the Nth log file, it would end up overwriting the target file. A similar vulnerability exists with the mysql_multi utility, which creates a temporary file called mysql_multi.log. Impact Since mysql_multi runs as root, a local attacker could use this to destroy any other users' data or corrupt and destroy system files. Workaround One could modify both scripts to log to a directory that users do not have write permission to, such as /var/log/mysql/. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0381 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0388 Solution: All users should upgrade to the latest stable version of MySQL. # emerge sync # emerge -pv ">=dev-db/mysql-4.0.18-r2" # emerge ">=dev-db/mysql-4.0.18-r2" Network Security Threat Level: Medium Networks Security ID: Vulnerability Assessment Copyright: (C) 2005 Michel Arboi |
||
Cables, Connectors |
Cisco SG110 24 Port Gigabit Ethernet Switch w/ 2 x SFP SG110-24
$117.00
BROCADE 57-0000089-01 Brocade 16G LWL 10KM FC SFP XBR-000198 XBR-000199
$29.00
QK724A HP B-SERIES 16GB SFP+ SHORT WAVE TRANSCEIVER 656435-001
$9.50
GENUINE CISCO DS-SFP-FC32G-SW SFP NEW SEALED SEE PHOTOS SHIPS FREE
$74.99
Genuine Cisco SFP-10G-SR V03 10GBASE-SR SFP+ Transceiver Module 10-2415-03
$8.00
For Cisco SFP-10G-T, Ubiquiti UF-RJ45-10G Module 10G SFP+ to RJ45 10GBase-T
$48.59
FS SFP-10G-T, 10GBASE-T SFP+ Copper RJ-45 30m Transceiver Module
$50.00
GENUINE Cisco SFP-GE-T EXT 30-1421-01 USA 1000BASE-T RJ45 SFP Transceiver
$9.99
NEW Sealed Cisco SFP-10G-SR-S 10G SR SFP+ Module 850nmMM *US Shipping*
$15.00
Lot (10) Dell 0N8TDR 850nm SFP-10G-SR-85C 10Gbs sfp+ FTLX8574D3BNL-FC N8TDR NEW
$68.00
|
||
No Discussions have been posted on this vulnerability. |