Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-0709 — Code Injection in Mysql

CWE-94 — Code Injection7 documents6 sources

Severity

4.6MEDIUMNVD

EPSS

17.9%

top 4.83%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Mysql Oracle Mysql

Timeline

PublishedMay 2

Latest updateMay 1

Description

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

▶NVDmysql/mysql4.1.0, 4.1.10, 4.1.3+2

▶NVDoracle/mysql27 versions+26

Patches

Patch: www.debian.org ↗Patch: www.gentoo.org ↗Patch: www.novell.com ↗

🔴Vulnerability Details

GHSA

GHSA-3x8w-p58r-45ff: MySQL 4↗2022-05-01

▶

💥Exploits & PoCs

Exploit-DB

MySQL 4.x - CREATE FUNCTION Arbitrary libc Code Execution↗2005-03-11

▶

📋Vendor Advisories

Ubuntu

mySQL vulnerabilities↗2005-03-16

▶

Red Hat

security flaw↗2005-03-11

▶

💬Community

Bugzilla

CVE-2005-0709 security flaw↗2018-08-16

▶