« List of all CVEs

CVE-2005-0709

Published: 3/11/2005 Last updated: 8/7/2024 Reserved: 3/11/2005

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (1)

conf-mysql

Products affected (1)

Product Vendor Version
n/a n/a < 18.3R3-S4

References (30)