Bugzilla – Bug 42082
VUL-0: CVE-2003-0150: mysql: possible privilege escalation to root
Last modified: 2021-09-26 10:36:26 UTC
http://www.mysql.com/doc/en/News-3.23.56.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0150 The new version has several security fixes, including one for a problem where a user accessing mysql could overwrite a configfile, which in turn would make mysql run as root (allowing further exploits).
<!-- SBZ_reproduce --> unknown.
Yes, I'm working on the overwrite bugfix. If users star mysql with out rcmysql script, they are not vulnerable, as it is run with --user=mysql. May I ask you for translating into german (for the putonftp file): MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart. You are not vulnerable if you use "rcmysql start" to start mysqld.
done
CVE-2003-0150: CVSS v2 Base Score: 9.0 (AV:N/AC:L/Au:S/C:C/I:C/A:C)