Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

CVE Kennung:CVE-2008-4098
Beschreibung:MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL home data directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4097.
Test Kennungen: 1.3.6.1.4.1.25623.1.0.66714   1.3.6.1.4.1.25623.1.0.100156   1.3.6.1.4.1.25623.1.0.63095   1.3.6.1.4.1.25623.1.0.66713   1.3.6.1.4.1.25623.1.0.811630   1.3.6.1.4.1.25623.1.0.811631  
Querverweise: Common Vulnerability Exposure (CVE) ID: CVE-2008-4098
Debian Security Information: DSA-1662 (Google Search)
http://www.debian.org/security/2008/dsa-1662
http://www.mandriva.com/security/advisories?name=MDVSA-2009:094
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480292#25
http://www.openwall.com/lists/oss-security/2008/09/09/20
http://www.openwall.com/lists/oss-security/2008/09/16/3
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10591
RedHat Security Advisories: RHSA-2009:1067
http://www.redhat.com/support/errata/RHSA-2009-1067.html
RedHat Security Advisories: RHSA-2010:0110
http://www.redhat.com/support/errata/RHSA-2010-0110.html
http://secunia.com/advisories/32578
http://secunia.com/advisories/32759
http://secunia.com/advisories/32769
http://secunia.com/advisories/38517
SuSE Security Announcement: SUSE-SR:2008:025 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.html
http://www.ubuntu.com/usn/USN-1397-1
http://www.ubuntu.com/usn/USN-671-1
http://ubuntu.com/usn/usn-897-1
XForce ISS Database: mysql-myisam-symlink-security-bypass(45649)
https://exchange.xforce.ibmcloud.com/vulnerabilities/45649




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.