Summary
You are running a version of MySQL which is older than version 4.0.21.
mysqlhotcopy is reported to contain an insecure temporary file creation vulnerability.
The result of this is that temporary files created by the application may use predictable filenames.
A local attacker may also possibly exploit this vulnerability to execute symbolic link file overwrite attacks.
*** Note : this vulnerability is local only
Solution
Upgrade to the latest version of MySQL 4.0.21 or newer
Severity
Classification
-
CVE CVE-2004-0457 -
CVSS Base Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- MySQL Multiple Vulnerabilities
- Oracle Database Server Multiple Unspecified Vulnerabilities-01 Jan2014
- Oracle Database Server Authentication Protocol Security Bypass Vulnerability
- Oracle MySQL 'TEMPORARY InnoDB' Tables Denial Of Service Vulnerability
- Oracle MySQL Multiple Unspecified vulnerabilities-04 Feb15 (Windows)