MySQL Enterprise Server 5.0 < 5.0.52 Multiple Vulnerabilities

medium Nessus Plugin ID 29346

Synopsis

The remote database server is affected by several issues.

Description

The version of MySQL Enterprise Server 5.0 installed on the remote host is earlier than 5.0.52. Such versions reportedly are affected by the following issues :

- Using RENAME TABLE against a table with explicit DATA DIRECTORY and INDEX DIRECTORY options can be used to overwrite system table information. (Bug #32111).

- ALTER VIEW retained the original DEFINER value, even when altered by another user, which could allow that user to gain the access rights of the view. (Bug #29908)

- When using a FEDERATED table, the local server can be forced to crash if the remote server returns a result with fewer columns than expected. (Bug #29801)

Solution

Upgrade to MySQL Enterprise Server version 5.0.52 or later.

See Also

https://bugs.mysql.com/bug.php?id=32111

https://bugs.mysql.com/bug.php?id=29908

https://bugs.mysql.com/bug.php?id=29801

http://dev.mysql.com/doc/refman/5.0/en/news-5-0-52.html

Plugin Details

Severity: Medium

ID: 29346

File Name: mysql_enterprise_5_0_52.nasl

Version: 1.15

Type: remote

Family: Databases

Published: 12/13/2007

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 4.6

Temporal Score: 3.4

Vector: CVSS2#AV:N/AC:H/Au:S/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:mysql:mysql

Exploit Ease: No known exploits are available

Reference Information

CVE: CVE-2007-5969, CVE-2007-6303, CVE-2007-6304

BID: 26765, 26832

CWE: 264