English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.51888
Category:Gain a shell remotely
Title:MySQL Multiple flaws (4)
Summary:NOSUMMARY
Description:Description:

The installed version of MySQL, according to the version
number, is vulnerable to a number of flaws that allow for
remote code execution by an attacker.

Versions up to and including 4.0.23 and 4.1.5 are known to be vulnerable.

Solution : Upgrade to version 4.0.24 or 4.1.10a or later.
Risk factor : Medium

CVSS Score:
4.6

Cross-Ref: BugTraq ID: 12781
Common Vulnerability Exposure (CVE) ID: CVE-2005-0709
101864
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1
12781
http://www.securityfocus.com/bid/12781
2005-0009
http://www.trustix.org/errata/2005/0009/
20050310 Mysql CREATE FUNCTION libc arbitrary code execution.
http://archives.neohapsis.com/archives/vulnwatch/2005-q1/0084.html
http://marc.info/?l=bugtraq&m=111066115808506&w=2
APPLE-SA-2005-08-15
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
APPLE-SA-2005-08-17
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
DSA-707
http://www.debian.org/security/2005/dsa-707
GLSA-200503-19
http://www.gentoo.org/security/en/glsa/glsa-200503-19.xml
MDKSA-2005:060
http://www.mandriva.com/security/advisories?name=MDKSA-2005:060
RHSA-2005:334
http://www.redhat.com/support/errata/RHSA-2005-334.html
RHSA-2005:348
http://www.redhat.com/support/errata/RHSA-2005-348.html
SUSE-SA:2005:019
http://www.novell.com/linux/security/advisories/2005_19_mysql.html
USN-96-1
https://usn.ubuntu.com/96-1/
oval:org.mitre.oval:def:10479
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10479
Common Vulnerability Exposure (CVE) ID: CVE-2005-0710
20050310 Mysql CREATE FUNCTION mysql.func table arbitrary library injection
http://archives.neohapsis.com/archives/vulnwatch/2005-q1/0083.html
http://marc.info/?l=bugtraq&m=111065974004648&w=2
mysql-udfinit-gain-access(19658)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19658
oval:org.mitre.oval:def:10180
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10180
Common Vulnerability Exposure (CVE) ID: CVE-2005-0711
20050310 Mysql insecure temporary file creation with CREATE TEMPORARY TABLE privilege escalation
http://archives.neohapsis.com/archives/vulnwatch/2005-q1/0082.html
oval:org.mitre.oval:def:9591
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9591
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.