Description

The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.

Remediation

References

CVE-2005-0004

Related Vulnerabilities

WordPress Plugin Easy2Map Photos Multiple Vulnerabilities (1.0.9)

WordPress Plugin Thrive Leads Security Bypass (2.3.9.3)

WordPress Plugin Uploadify Integration Multiple Cross-Site Scripting Vulnerabilities (0.9.6)

WordPress Plugin AppPresser-Mobile App Framework Security Bypass (4.3.0)

WordPress Plugin Search Unleashed 'Log' Function HTML Injection (0.2.10)

Severity

Medium

Classification

CVE-2005-0004 CWE-59

Tags

Missing Update Known Vulnerabilities