Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:H/Au:S/C:P/I:P/A:N)
Производитель ПО
Наименование ПО
mysql
(Unknown)
mysql-server-5.0
(6.06 LTS - mysql-server-5.0 5.0.22-0ubuntu6.06.6, 6.10 - mysql-server-5.0 5.0.24a-9ubuntu2.2, 7.04 - mysql-server-5.0 5.0.38-0ubuntu1.2, 7.10 - mysql-server-5.0 5.0.45-1ubuntu3.1)
Описание
MySQL Community Server, Enterprise Server и Server, когда таблица использует символьные ссылки, созданные с помощью явных операций DATA DIRECTORY и INDEX DIRECTORY, позволяет пользователям, которые прошли аутентификацию и действуют удаленно, перезаписать данные системных таблиц и повысить свои привилегии, используя выражение RENAME TABLE, который изменяет символьную ссылку так, что они указывает на существующий файл.
Как исправить
Для устранения уязвимости необходимо установить последнюю версию продукта, соответствующую используемой платформе. Необходимую информацию можно получить по адресу:
http://www.mysql.com/
http://www.apple.com/macosx/
http://www.mysql.com/
http://www.apple.com/macosx/
Ссылки
BID (31681): http://www.securityfocus.com/bid/31681
FEDORA (FEDORA-2007-4471): https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00475.html
FEDORA (FEDORA-2007-4465): https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00467.html
CONFIRM (https://issues.rpath.com/browse/RPL-1999): https://issues.rpath.com/browse/RPL-1999
UBUNTU (USN-559-1): http://www.ubuntulinux.org/support/documentation/usn/usn-559-1
SECTRACK (1019060): http://www.securitytracker.com/id?1019060
BID (26765): http://www.securityfocus.com/bid/26765
BUGTRAQ (20080117 rPSA-2008-0018-1 mysql mysql-bench mysql-server): http://www.securityfocus.com/archive/1/archive/1/486477/100/0/threaded
REDHAT (RHSA-2007:1157): http://www.redhat.com/support/errata/RHSA-2007-1157.html
REDHAT (RHSA-2007:1155): http://www.redhat.com/support/errata/RHSA-2007-1155.html
MANDRIVA (MDKSA-2007:243): http://www.mandriva.com/security/advisories?name=MDKSA-2007:243
VUPEN (ADV-2008-2780): http://www.frsirt.com/english/advisories/2008/2780
VUPEN (ADV-2008-1000): http://www.frsirt.com/english/advisories/2008/1000/references
VUPEN (ADV-2008-0560): http://www.frsirt.com/english/advisories/2008/0560/references
VUPEN (ADV-2007-4198): http://www.frsirt.com/english/advisories/2007/4198
VUPEN (ADV-2007-4142): http://www.frsirt.com/english/advisories/2007/4142
DEBIAN (DSA-1451): http://www.debian.org/security/2008/dsa-1451
CONFIRM (http://support.apple.com/kb/HT3216): http://support.apple.com/kb/HT3216
SLACKWARE (SSA:2007-348-01): http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.428959
GENTOO (GLSA-200804-04): http://security.gentoo.org/glsa/glsa-200804-04.xml
SUSE (SUSE-SR:2008:003): http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
MLIST ([Announcements] 20071206 MySQL 5.0.51 has been released): http://lists.mysql.com/announce/495
APPLE (APPLE-SA-2008-10-09): http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
CONFIRM (http://forums.mysql.com/read.php?3,186931,186931): http://forums.mysql.com/read.php?3,186931,186931
CONFIRM (http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.html): http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.html
CONFIRM (http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html): http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html
CONFIRM (http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.html): http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.html
FEDORA (FEDORA-2007-4471): https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00475.html
FEDORA (FEDORA-2007-4465): https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00467.html
CONFIRM (https://issues.rpath.com/browse/RPL-1999): https://issues.rpath.com/browse/RPL-1999
UBUNTU (USN-559-1): http://www.ubuntulinux.org/support/documentation/usn/usn-559-1
SECTRACK (1019060): http://www.securitytracker.com/id?1019060
BID (26765): http://www.securityfocus.com/bid/26765
BUGTRAQ (20080117 rPSA-2008-0018-1 mysql mysql-bench mysql-server): http://www.securityfocus.com/archive/1/archive/1/486477/100/0/threaded
REDHAT (RHSA-2007:1157): http://www.redhat.com/support/errata/RHSA-2007-1157.html
REDHAT (RHSA-2007:1155): http://www.redhat.com/support/errata/RHSA-2007-1155.html
MANDRIVA (MDKSA-2007:243): http://www.mandriva.com/security/advisories?name=MDKSA-2007:243
VUPEN (ADV-2008-2780): http://www.frsirt.com/english/advisories/2008/2780
VUPEN (ADV-2008-1000): http://www.frsirt.com/english/advisories/2008/1000/references
VUPEN (ADV-2008-0560): http://www.frsirt.com/english/advisories/2008/0560/references
VUPEN (ADV-2007-4198): http://www.frsirt.com/english/advisories/2007/4198
VUPEN (ADV-2007-4142): http://www.frsirt.com/english/advisories/2007/4142
DEBIAN (DSA-1451): http://www.debian.org/security/2008/dsa-1451
CONFIRM (http://support.apple.com/kb/HT3216): http://support.apple.com/kb/HT3216
SLACKWARE (SSA:2007-348-01): http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.428959
GENTOO (GLSA-200804-04): http://security.gentoo.org/glsa/glsa-200804-04.xml
SUSE (SUSE-SR:2008:003): http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
MLIST ([Announcements] 20071206 MySQL 5.0.51 has been released): http://lists.mysql.com/announce/495
APPLE (APPLE-SA-2008-10-09): http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
CONFIRM (http://forums.mysql.com/read.php?3,186931,186931): http://forums.mysql.com/read.php?3,186931,186931
CONFIRM (http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.html): http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-52.html
CONFIRM (http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html): http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html
CONFIRM (http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.html): http://dev.mysql.com/doc/refman/4.1/en/news-4-1-24.html