CVE-2007-5969
published 2007-12-10CVE-2007-5969: MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table…
PriorityP336high7.1CVSS 2.0
AVNACHAuSCCICAC
EPSS
14.26%
96.1th percentile
MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mysql | community_server | <= 5.0.50 | — |
| mysql | community_server | — | — |
| mysql | community_server | — | — |
| mysql | community_server | — | — |
| mysql | mysql_enterprise_server | — | — |
| mysql | mysql_server | — | — |
| mysql | mysql_server | — | — |
| mysql | mysql_server | — | — |
| mysql | mysql_server | — | — |
| mysql | mysql_server | — | — |
CVSS provenance
nvdv2.07.1HIGHAV:N/AC:H/Au:S/C:C/I:C/A:C
vendor_redhat7.1HIGH
vendor_ubuntu4.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-34f4-qcwh-g2jj: MySQL Community Server 5
ghsa_unreviewed·2022-05-01
CVE-2007-5969 [HIGH] GHSA-34f4-qcwh-g2jj: MySQL Community Server 5
MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.
Ubuntu
MySQL vulnerabilities
vendor_ubuntu·2007-12-21·CVSS 4.0
CVE-2007-3781 [MEDIUM] MySQL vulnerabilities
Title: MySQL vulnerabilities
Summary: MySQL vulnerabilities
Joe Gallo and Artem Russakovskii discovered that the InnoDB
engine in MySQL did not properly perform input validation. An
authenticated user could use a crafted CONTAINS statement to
cause a denial of service. (CVE-2007-5925)
It was discovered that under certain conditions MySQL could be
made to overwrite system table information. An authenticated
user could use a crafted RENAME statement to escalate privileges.
(CVE-2007-5969)
Philip Stoev discovered that the the federated engine of MySQL
did not properly handle responses with a small number of columns.
An authenticated user could use a crafted response to a SHOW
TABLE STATUS query and cause a denial of service. (CVE-2007-6304)
It was discovered that MySQL did not properly e
Red Hat
mysql: possible system table information overwrite using symlinks
vendor_redhat·2007-11-15·CVSS 7.1
CVE-2007-5969 [HIGH] mysql: possible system table information overwrite using symlinks
mysql: possible system table information overwrite using symlinks
MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.
No detection rules found.
No public exploits indexed.
http://bugs.mysql.com/32111http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.htmlhttp://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.htmlhttp://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.htmlhttp://forums.mysql.com/read.php?3%2C186931%2C186931http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.htmlhttp://lists.mysql.com/announce/495http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.htmlhttp://secunia.com/advisories/27981http://secunia.com/advisories/28025http://secunia.com/advisories/28040http://secunia.com/advisories/28063http://secunia.com/advisories/28099http://secunia.com/advisories/28108http://secunia.com/advisories/28128http://secunia.com/advisories/28343http://secunia.com/advisories/28559http://secunia.com/advisories/28838http://secunia.com/advisories/29706http://secunia.com/advisories/32222http://security.gentoo.org/glsa/glsa-200804-04.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.428959http://support.apple.com/kb/HT3216http://www.debian.org/security/2008/dsa-1451http://www.mandriva.com/security/advisories?name=MDKSA-2007:243http://www.redhat.com/support/errata/RHSA-2007-1155.htmlhttp://www.redhat.com/support/errata/RHSA-2007-1157.htmlhttp://www.securityfocus.com/archive/1/486477/100/0/threadedhttp://www.securityfocus.com/bid/26765http://www.securityfocus.com/bid/31681http://www.securitytracker.com/id?1019060http://www.vupen.com/english/advisories/2007/4142http://www.vupen.com/english/advisories/2007/4198http://www.vupen.com/english/advisories/2008/0560/referenceshttp://www.vupen.com/english/advisories/2008/1000/referenceshttp://www.vupen.com/english/advisories/2008/2780https://issues.rpath.com/browse/RPL-1999https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10509https://usn.ubuntu.com/559-1/https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00467.htmlhttps://www.redhat.com/archives/fedora-package-announce/2007-December/msg00475.htmlhttp://bugs.mysql.com/32111http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.htmlhttp://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.htmlhttp://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.htmlhttp://forums.mysql.com/read.php?3%2C186931%2C186931http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.htmlhttp://lists.mysql.com/announce/495http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.htmlhttp://secunia.com/advisories/27981http://secunia.com/advisories/28025http://secunia.com/advisories/28040http://secunia.com/advisories/28063http://secunia.com/advisories/28099http://secunia.com/advisories/28108http://secunia.com/advisories/28128http://secunia.com/advisories/28343http://secunia.com/advisories/28559http://secunia.com/advisories/28838http://secunia.com/advisories/29706http://secunia.com/advisories/32222http://security.gentoo.org/glsa/glsa-200804-04.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.428959http://support.apple.com/kb/HT3216http://www.debian.org/security/2008/dsa-1451http://www.mandriva.com/security/advisories?name=MDKSA-2007:243http://www.redhat.com/support/errata/RHSA-2007-1155.htmlhttp://www.redhat.com/support/errata/RHSA-2007-1157.htmlhttp://www.securityfocus.com/archive/1/486477/100/0/threadedhttp://www.securityfocus.com/bid/26765http://www.securityfocus.com/bid/31681http://www.securitytracker.com/id?1019060http://www.vupen.com/english/advisories/2007/4142http://www.vupen.com/english/advisories/2007/4198http://www.vupen.com/english/advisories/2008/0560/referenceshttp://www.vupen.com/english/advisories/2008/1000/referenceshttp://www.vupen.com/english/advisories/2008/2780https://issues.rpath.com/browse/RPL-1999https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10509https://usn.ubuntu.com/559-1/https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00467.htmlhttps://www.redhat.com/archives/fedora-package-announce/2007-December/msg00475.html
2007-12-10
Published