Home > Vulnerability Database > CVE-2005-0711

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2005-0711

Date: March 11, 2005

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.

Severity Score

4.0

Related Resources (16)

Url: http://www.redhat.com/support/errata/RHSA-2005-334.html

Url: https://usn.ubuntu.com/96-1/

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2005:060

Url: http://www.gentoo.org/security/en/glsa/glsa-200503-19.xml

Url: https://nvd.nist.gov/vuln/detail/CVE-2005-0711

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9591

Url: http://www.debian.org/security/2005/dsa-707

Url: http://archives.neohapsis.com/archives/vulnwatch/2005-q1/0082.html

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-26-101864-1

Url: http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html

Url: http://www.securityfocus.com/bid/12781

Url: http://www.novell.com/linux/security/advisories/2005_19_mysql.html

Url: http://www.redhat.com/support/errata/RHSA-2005-348.html

Url: http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html

Url: http://www.trustix.org/errata/2005/0009/

Url: https://www.mend.io/vulnerability-database/CVE-2005-0711

Severity Score

4.0

CVSS v3.1

Base Score:	4.0
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	NONE

CVSS v2

Base Score:	2.1
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Do you need more information?

Contact Us