Vulnerability CVE-2004-0388

Vulnerability Name:

CVE-2004-0388 (CCN-15883)

Assigned:

2004-04-14

Published:

2004-04-14

Updated:

2019-12-17

Summary:

The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack.

CVSS v3 Severity:

4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

2.6 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

File Manipulation

References:

Source: CCN
Type: BugTraq Mailing List, Wed Apr 14 2004 - 15:48:03 CDT
OpenPKG Security Advisory (mysql)

Source: MITRE
Type: CNA
CVE-2004-0388

Source: CONFIRM
Type: UNKNOWN
http://dev.mysql.com/doc/mysql/en/news-4-1-2.html

Source: BUGTRAQ
Type: UNKNOWN
20040414 [OpenPKG-SA-2004.014] OpenPKG Security Advisory (mysql)

Source: CCN
Type: RHSA-2004-569
mysql security update

Source: CCN
Type: RHSA-2004-597
mysql security update

Source: CCN
Type: SA11223
MySQL "mysqlbug" Insecure Temporary File Creation Vulnerability

Source: SECUNIA
Type: UNKNOWN
11223

Source: GENTOO
Type: Vendor Advisory
GLSA-200405-20

Source: CCN
Type: SECTRACK ID: 1009784
MySQL `mysqld_multi` Temporary File Flaw Lets Local Users Overwrite Files

Source: SECTRACK
Type: UNKNOWN
1009784

Source: CCN
Type: CIAC Information Bulletin P-018
Red Hat Update MySQL Packages Fix Security Issues and Bugs

Source: CIAC
Type: UNKNOWN
P-018

Source: DEBIAN
Type: Patch, Vendor Advisory
DSA-483

Source: DEBIAN
Type: DSA-483
mysql -- insecure temporary file creation

Source: CCN
Type: GLSA-200405-20
Insecure Temporary File Creation In MySQL

Source: CCN
Type: GLSA 200405-20
Insecure Temporary File Creation In MySQL

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2004:034

Source: CCN
Type: MySQL Web site
2.3.3 Installing from the Development Source Tree

Source: CCN
Type: OpenPKG-SA-2004.014
MySQL

Source: OSVDB
Type: UNKNOWN
6421

Source: CCN
Type: OSVDB ID: 6421
MySQL mysqld_multi Symlink Arbitrary File Overwrite

Source: REDHAT
Type: UNKNOWN
RHSA-2004:569

Source: REDHAT
Type: UNKNOWN
RHSA-2004:597

Source: BID
Type: UNKNOWN
10142

Source: CCN
Type: BID-10142
MySQL MYSQLD_Multi Insecure Temporary File Creation Vulnerability

Source: CCN
Type: TLSA-2005-23
Multiple vulnerabilities have been discovered in MySQL

Source: XF
Type: UNKNOWN
mysql-mysqldmulti-symlink(15883)

Source: XF
Type: UNKNOWN
mysql-mysqldmulti-symlink(15883)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10559

Vulnerable Configuration:

Configuration 1:

cpe:/a:oracle:mysql:5.0.33:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:mysql:mysql:*:*:*:*:*:*:*:*

AND

cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*

OR cpe:/a:openpkg:openpkg:current:*:*:*:*:*:*:*

OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:9.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:ws:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:aw:*:*:*:*:*

OR cpe:/a:openpkg:openpkg:1.3:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

OR cpe:/a:openpkg:openpkg:2.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*

OR cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*

OR cpe:/o:turbolinux:turbolinux:*:*:home:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:9.1::ppc:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:9.2::amd64:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1::x86_64:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:10559	V	The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack.	2013-04-29
oval:com.redhat.rhsa:def:20040569	P	RHSA-2004:569: mysql security update (Low)	2004-10-20
oval:org.debian:def:483	V	insecure temporary file creation	2004-04-14

BACK