Vulnerability Name:

CVE-2010-1621 (CCN-57925)

Assigned:2010-04-19
Published:2010-04-19
Updated:2018-01-05
Summary:The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL 5.1 before 5.1.46 does not check privileges before uninstalling a plugin, which allows remote attackers to uninstall arbitrary plugins via the UNINSTALL PLUGIN command.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
5.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:H/RL:U/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:H/RL:U/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-264
Vulnerability Consequences:Bypass Security
References:Source: CONFIRM
Type: UNKNOWN
http://bugs.mysql.com/bug.php?id=51770

Source: MITRE
Type: CNA
CVE-2010-1621

Source: CCN
Type: MySQL Web Site
C.1.2. Changes in MySQL 5.1.46 (Not yet released)

Source: CONFIRM
Type: UNKNOWN
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-46.html

Source: CCN
Type: SA39454
MySQL "UNINSTALL PLUGIN" Privilege Check Security Issue

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2010:093

Source: CCN
Type: OSVDB ID: 63903
MySQL sql/sql_plugin.cc mysql_uninstall_plugin Function UNINSTALL PLUGIN Command Privilege Check Weakness

Source: BID
Type: UNKNOWN
39543

Source: CCN
Type: BID-39543
MySQL UNINSTALL PLUGIN Security Bypass Vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-1397-1

Source: XF
Type: UNKNOWN
mysql-uninstallplugin-security-bypass(57925)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mysql:mysql:*:*:*:*:*:*:*:* (Version <= 5.1.45)

    • Configuration CCN 1:
  • cpe:/a:oracle:mysql:5.1.45:*:*:*:*:*:*:*
  • AND
  • cpe:/o:mandriva:linux:2009.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.1:*:*:*:x86_64:*:*:*
  • OR cpe:/o:mandriva:linux:2010:*:*:*:x86_64:*:*:*
  • OR cpe:/o:mandriva:linux:2010:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20101621
    V
    		CVE-2010-1621
    2015-11-16
    oval:org.mitre.oval:def:12968
    P
    		USN-950-1 -- mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:14934
    P
    		USN-1397-1 -- MySQL vulnerabilities
    2014-06-30
    BACK
    mysql mysql *
    mysql mysql 5.1.45
    mandriva linux 2009.1
    mandriva linux 2009.1
    mandriva linux 2010
    mandriva linux 2010