Description

The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.

Remediation

References

CVE-2005-0004

Related Vulnerabilities

WordPress Plugin Token Manager 'tid' Parameter Multiple Cross-Site Scripting Vulnerabilities (1.0.2)

WordPress Plugin Codestyling Localization 'name' Parameter Cross-Site Scripting (1.99.19)

Apache Traffic Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-3249)

MySQL CVE-2015-4807 Vulnerability (CVE-2015-4807)

PHP Resource Management Errors Vulnerability (CVE-2011-3267)

Severity

Medium

Classification

CVE-2005-0004 CWE-59

Tags

Missing Update Known Vulnerabilities