cbcvebase.
CVE-2003-0150
published 2003-03-24

CVE-2003-0150: MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to…

PriorityP348critical9CVSS 2.0
AVNACLAuSCCICAC
EXPLOIT
EPSS
44.83%
98.6th percentile
MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart, as demonstrated by modifying my.cnf.

Affected

6 ranges
VendorProductVersion rangeFixed in
oraclemysql
oraclemysql
oraclemysql
oraclemysql
oraclemysql
oraclemysql

CVSS provenance

nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
vendor_redhat9.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.