| Definition Id: oval:org.mitre.oval:def:442 |
Version: 4
Last Modified: 2010-09-02
|
| Title: |
MYSQL Privilege Escalation Vulnerability via INFO OUTFILE Select |
| Description: |
MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart, as demonstrated by modifying my.cnf. |
| Family: |
unix |
Class: |
vulnerability |
| Status: |
ACCEPTED |
Reference(s): |
CVE-2003-0150
|
| Platform(s): |
Red Hat Linux 9 |
Product(s): |
MySQL |
| Definition Synopsis: |
- Software section
- AND Configuration section
|
