Vulnerability Name:

CVE-2001-0407 (CCN-6617)

Assigned:2001-03-18
Published:2001-03-18
Updated:2019-10-07
Summary:Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. (dot dot).
CVSS v3 Severity:5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: BUGTRAQ
Type: Exploit, Vendor Advisory
20010318 potential vulnerability of mysqld running with root privileges (can be used as good DoS or r00t expoloit)

Source: CCN
Type: BugTraq Mailing List, Sun Mar 18 2001 - 12:32:37 CST
potential vulnerability of mysqld running with root privileges (can be used as good DoS or r00t expoloit)

Source: BUGTRAQ
Type: Patch, Vendor Advisory
20010327 MySQL 3.23.36 is relased (fwd)

Source: CCN
Type: BugTraq Mailing List, Tue Mar 27 2001 - 13:45:18 CST
MySQL 3.23.36 is relased (fwd)

Source: MITRE
Type: CNA
CVE-2001-0407

Source: CCN
Type: MySQL Web site
Downloads for the 3.23 version

Source: CCN
Type: OSVDB ID: 520
MySQL Database Name Traversal Arbitrary File Modification

Source: BID
Type: UNKNOWN
2522

Source: CCN
Type: BID-2522
MySQL Root Operation Symbolic Link File Overwriting Vulnerability

Source: XF
Type: UNKNOWN
mysql-dot-directory-traversal(6617)

Source: XF
Type: UNKNOWN
mysql-dot-directory-traversal(6617)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:oracle:mysql:*:*:*:*:*:*:*:* (Version <= 3.23.36)

    • Configuration CCN 1:
  • cpe:/a:oracle:mysql:3.22.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.27:*:*:*:*:*:*:*
  • OR cpe:/a:mysql:mysql:3.23.20:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.20:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.21:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.22.32:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.0:alpha:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.10:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.11:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.12:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.13:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.14:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.15:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.16:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.17:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.18:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.19:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.20:beta:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.21:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.22:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.23:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.24:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.25:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.26:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.27:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.28:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.28:gamma:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.29:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.30:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.31:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.32:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.33:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.34:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:mysql:3.23.35:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    oracle mysql *
    mysql mysql 3.22.29
    mysql mysql 3.22.27
    mysql mysql 3.23.20
    mysql mysql 3.23
    mysql mysql 3.20
    mysql mysql 3.21
    mysql mysql 3.22
    mysql mysql 3.22.26
    mysql mysql 3.22.28
    mysql mysql 3.22.30
    mysql mysql 3.22.32
    mysql mysql 3.23.0 alpha
    mysql mysql 3.23.1
    mysql mysql 3.23.10
    mysql mysql 3.23.11
    mysql mysql 3.23.12
    mysql mysql 3.23.13
    mysql mysql 3.23.14
    mysql mysql 3.23.15
    mysql mysql 3.23.16
    mysql mysql 3.23.17
    mysql mysql 3.23.18
    mysql mysql 3.23.19
    mysql mysql 3.23.2
    mysql mysql 3.23.20 beta
    mysql mysql 3.23.21
    mysql mysql 3.23.22
    mysql mysql 3.23.23
    mysql mysql 3.23.24
    mysql mysql 3.23.25
    mysql mysql 3.23.26
    mysql mysql 3.23.27
    mysql mysql 3.23.28
    mysql mysql 3.23.28 gamma
    mysql mysql 3.23.29
    mysql mysql 3.23.3
    mysql mysql 3.23.30
    mysql mysql 3.23.31
    mysql mysql 3.23.32
    mysql mysql 3.23.33
    mysql mysql 3.23.34
    mysql mysql 3.23.35