|
|
|||
| Rule General Information |
|---|
| Release Date: | 2014-12-19 | |
| Rule Name: | MySQL CREATE FUNCTION libc Arbitrary code execution (CVE-2005-0709) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls. | |
| Impact: | Remote code execution | |
| Affected OS: | Windows, Solaris, Other Unix, FreeBSD, Linux | |
| Reference: | CVE-2005-0709 |
|
| Solutions |
|---|
| Update vendor's patch. |