Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_4_1_23_5_0_42.NASL
HistoryJan 18, 2012 - 12:00 a.m.

MySQL < 4.1.23 / 5.0.42 Access Control Vulnerability

2012-01-1800:00:00
This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16

4.9 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:P/A:P

0.008 Low

EPSS

Percentile

82.1%

JSON

The version of MySQL installed on the remote host is older than 4.1.23 or 5.0.42. As such, it reportedly allows a remote, authenticated user without the DROP privilege to rename arbitrary tables.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(17829);
  script_version("1.5");
  script_cvs_date("Date: 2018/07/16 14:09:12");

  script_cve_id("CVE-2007-2691");
  script_bugtraq_id(24016);

  script_name(english:"MySQL < 4.1.23 / 5.0.42 Access Control Vulnerability");
  script_summary(english:"Checks version of MySQL server");

  script_set_attribute(attribute:"synopsis", value:
"The remote database server is affected by an access control
vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of MySQL installed on the remote host is older than
4.1.23 or 5.0.42.  As such, it reportedly allows a remote,
authenticated user without the DROP privilege to rename arbitrary
tables.");
  script_set_attribute(attribute:"see_also", value:"http://bugs.mysql.com/bug.php?id=27515");
  script_set_attribute(attribute:"solution", value:"Upgrade to MySQL version 4.1.23 / 5.0.42 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2007/05/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/01/18");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mysql:mysql");
  script_end_attributes();
 
  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mysql_version.nasl", "mysql_login.nasl");
  script_require_keys("Settings/ParanoidReport");
  script_require_ports("Services/mysql", 3306);

  exit(0);
}

include("mysql_version.inc");

mysql_check_version(fixed:make_list('4.1.23', '5.0.42'), severity:SECURITY_WARNING);
VendorProductVersionCPE
mysqlmysqlcpe:/a:mysql:mysql

Related

openvas 17
veracode 1
nessus 15
prion 1
cvelist 1
cve 1
ubuntucve 1
freebsd 1
securityvulns 3
nvd 1
ubuntu 1
redhat 3
debian 2
osv 1
oraclelinux 2
openvas
openvas
FreeBSD Ports: mysql-server
2009-01-13 00:00:00
FreeBSD Ports: mysql-server
2009-01-13 00:00:00
Mandriva Update for MySQL MDKSA-2007:139 (MySQL)
2009-04-09 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:25:17
nessus
nessus
FreeBSD : mysql -- renaming of arbitrary tables by authenticated users (bb4e9a44-dff2-11dd-a765-0030843d3802)
2009-01-12 00:00:00
Mandrake Linux Security Advisory : MySQL (MDKSA-2007:139)
2007-07-05 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 : mysql-dfsg-5.0 vulnerabilities (USN-528-1)
2007-11-10 00:00:00
prion
prion
Code injection
2007-05-16 01:19:00
cvelist
cvelist
CVE-2007-2691
2007-05-16 01:00:00
cve
cve
CVE-2007-2691
2007-05-16 01:19:00
ubuntucve
ubuntucve
CVE-2007-2691
2007-05-16 00:00:00
freebsd
freebsd
mysql -- renaming of arbitrary tables by authenticated users
2007-05-14 00:00:00
securityvulns
securityvulns
MySQL RENAME privilege escalation
2007-07-05 00:00:00
MySQL multiple security vulnerabilities
2007-10-13 00:00:00
[email protected], [email protected]
2007-10-13 00:00:00
nvd
nvd
CVE-2007-2691
2007-05-16 01:19:00
ubuntu
ubuntu
MySQL vulnerabilities
2007-10-11 00:00:00
redhat
redhat
(RHSA-2008:0768) Moderate: mysql security, bug fix, and enhancement update
2008-07-24 00:00:00
(RHSA-2007:0894) Important: mysql security update
2007-09-10 00:00:00
(RHSA-2008:0364) Low: mysql security and bug fix update
2008-05-20 00:00:00
debian
debian
[SECURITY] [DSA 1413-1] New mysql packages fix multiple vulnerabilities
2007-11-26 17:20:12
[SECURITY] [DSA 1413-1] New mysql packages fix multiple vulnerabilities
2007-11-26 17:20:12
osv
osv
mysql - multiple
2007-11-26 00:00:00
oraclelinux
oraclelinux
mysql security, bug fix, and enhancement update
2008-08-01 00:00:00
mysql security and bug fix update
2008-05-30 00:00:00

4.9 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:P/A:P

0.008 Low

EPSS

Percentile

82.1%

JSON
Related for MYSQL_4_1_23_5_0_42.NASL
openvas17veracode1nessus15prion1cvelist1cve1ubuntucve1freebsd1securityvulns3nvd1ubuntu1redhat3debian2osv1oraclelinux2