exploits , vulnerabilities , articles , MySQL Server RENAME TABLE System Table Overwrite Vulnerability

Title	MySQL Server RENAME TABLE System Table Overwrite Vulnerability
Published	2007-12-07-12:00AM
Updated	2008-02-08-07:16PM
Class	Design Error
CVE	CVE-2007-5969
Remote	No
Local	Yes
Credit	The vendor disclosed this issue.
Vulnerable	Ubuntu Ubuntu Linux 7.10 sparc Ubuntu Ubuntu Linux 7.10 powerpc Ubuntu Ubuntu Linux 7.10 i386 Ubuntu Ubuntu Linux 7.10 amd64 Ubuntu Ubuntu Linux 7.04 sparc Ubuntu Ubuntu Linux 7.04 powerpc Ubuntu Ubuntu Linux 7.04 i386 Ubuntu Ubuntu Linux 7.04 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Slackware Linux 12.0 Slackware Linux 11.0 Slackware Linux current S.u.S.E. UnitedLinux 1.0 S.u.S.E. SuSE Linux Standard Server 8.0 S.u.S.E. SuSE Linux School Server for i386 S.u.S.E. SUSE LINUX Retail Solution 8.0 S.u.S.E. SuSE Linux Openexchange Server 4.0 S.u.S.E. SUSE Linux Enterprise Server 10 SP1 S.u.S.E. SUSE Linux Enterprise Desktop 10 SP1 S.u.S.E. openSUSE 10.3 S.u.S.E. openSUSE 10.2 S.u.S.E. OpenEnterpriseServer 0 S.u.S.E. Novell Linux POS 9 S.u.S.E. Novell Linux Desktop 9 S.u.S.E. Linux Enterprise Server 9 S.u.S.E. Linux Enterprise Server 8 S.u.S.E. Linux Enterprise Server 10.SP1 S.u.S.E. Linux Enterprise SDK 10 SP1 S.u.S.E. Linux Desktop 1.0 S.u.S.E. Linux 10.1 x8664 S.u.S.E. Linux 10.1 x86 S.u.S.E. Linux 10.1 ppc S.u.S.E. Linux 10.0 x8664 S.u.S.E. Linux 10.0 x86 S.u.S.E. Linux 10.0 ppc rPath rPath Linux 1 RedHat Fedora 8 0 RedHat Fedora 7 0 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux ES 4.6.z RedHat Enterprise Linux ES 4.5.z RedHat Enterprise Linux ES 4 RedHat Enterprise Linux Desktop Workstation 5 client RedHat Enterprise Linux Desktop 5 client RedHat Enterprise Linux AS 4.6.z RedHat Enterprise Linux AS 4.5.z RedHat Enterprise Linux AS 4 RedHat Enterprise Linux 5 server RedHat Desktop 4.0 MySQL AB MySQL 5.0.50 MySQL AB MySQL 5.0.49 MySQL AB MySQL 5.0.48 MySQL AB MySQL 5.0.47 MySQL AB MySQL 5.0.46 MySQL AB MySQL 5.0.45 MySQL AB MySQL 5.0.44 MySQL AB MySQL 5.0.42 MySQL AB MySQL 5.0.40 MySQL AB MySQL 5.0.39 MySQL AB MySQL 5.0.38 MySQL AB MySQL 5.0.37 MySQL AB MySQL 5.0.36 MySQL AB MySQL 5.0.33 MySQL AB MySQL 5.0.32 MySQL AB MySQL 5.0.27 MySQL AB MySQL 5.0.24 MySQL AB MySQL 5.0.22 10.1 MySQL AB MySQL 5.0.22 MySQL AB MySQL 5.0.21 MySQL AB MySQL 5.0.20 MySQL AB MySQL 5.0.19 MySQL AB MySQL 5.0.18 MySQL AB MySQL 5.0.4 MySQL AB MySQL 5.0.3 MySQL AB MySQL 5.0.2 MySQL AB MySQL 5.0.1 MySQL AB MySQL 5.0 .0alpha MySQL AB MySQL 5.0 .00 MySQL AB MySQL 4.1.23 MySQL AB MySQL 4.1.21 MySQL AB MySQL 4.1.20 MySQL AB MySQL 4.1.19 MySQL AB MySQL 4.1.18 MySQL AB MySQL 4.1.16 MySQL AB MySQL 4.1.15 MySQL AB MySQL 4.1.13 MySQL AB MySQL 4.1.12 MySQL AB MySQL 4.1.11 MySQL AB MySQL 4.1.7 MySQL AB MySQL 4.1.5 MySQL AB MySQL 4.1.4 MySQL AB MySQL 4.1.3 beta MySQL AB MySQL 4.1.3 beta MySQL AB MySQL 4.1.3 0 MySQL AB MySQL 4.1.2 alpha MySQL AB MySQL 4.1.2 MySQL AB MySQL 4.1.1 MySQL AB MySQL 4.1 .11 MySQL AB MySQL 4.0.27 MySQL AB MySQL 4.0.26 MySQL AB MySQL 4.0.25 MySQL AB MySQL 4.0.24 MySQL AB MySQL 4.0.23 MySQL AB MySQL 4.0.21 MySQL AB MySQL 4.0.20 MySQL AB MySQL 4.0.19 MySQL AB MySQL 4.0.18 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Linux Mandrake 10.0 AMD64 MandrakeSoft Linux Mandrake 10.0 MySQL AB MySQL 4.0.17 MySQL AB MySQL 4.0.15 MySQL AB MySQL 4.0.14 MySQL AB MySQL 4.0.13 MySQL AB MySQL 4.0.12 MySQL AB MySQL 4.0.11 gamma MySQL AB MySQL 4.0.11 MySQL AB MySQL 4.0.10 MySQL AB MySQL 4.0.9 gamma MySQL AB MySQL 4.0.9 MySQL AB MySQL 4.0.8 gamma MySQL AB MySQL 4.0.8 MySQL AB MySQL 4.0.7 gamma MySQL AB MySQL 4.0.7 MySQL AB MySQL 4.0.6 MySQL AB MySQL 4.0.5 a MySQL AB MySQL 4.0.5 MySQL AB MySQL 4.0.4 MySQL AB MySQL 4.0.3 MySQL AB MySQL 4.0.2 MySQL AB MySQL 4.0.1 MySQL AB MySQL 4.0 .0 MySQL AB MySQL 3.23.59 MySQL AB MySQL 3.23.58 Conectiva Linux 9.0 RedHat Enterprise Linux AS 2.1 RedHat Enterprise Linux ES 2.1 RedHat Enterprise Linux WS 2.1 RedHat Fedora Core2 RedHat Linux Advanced Work Station 2.1 Sun Linux 5.0.7 Sun Linux 5.0.6 Sun Linux 5.0.5 Sun Linux 5.0.3 Sun Linux 5.0 Turbolinux Appliance Server 1.0 Workgroup Edition Turbolinux Appliance Server 1.0 Hosting Edition Turbolinux Appliance Server Hosting Edition 1.0 Turbolinux Appliance Server Workgroup Edition 1.0 Turbolinux Home Turbolinux Turbolinux Desktop 10.0 Turbolinux Turbolinux Server 8.0 Turbolinux Turbolinux Workstation 8.0 MySQL AB MySQL 3.23.56 MySQL AB MySQL 3.23.55 MySQL AB MySQL 3.23.54 a OpenPKG OpenPKG 1.2 OpenPKG OpenPKG Current RedHat Linux 9.0 i386 MySQL AB MySQL 3.23.54 Sun Cobalt RaQ 550 Trustix Secure Linux 1.5 MySQL AB MySQL 3.23.53 a MySQL AB MySQL 3.23.53 OpenPKG OpenPKG Current Sun Cobalt Qube 3 MySQL AB MySQL 3.23.52 Conectiva Linux Enterprise Edition 1.0 MandrakeSoft Linux Mandrake 9.0 OpenPKG OpenPKG 1.1 RedHat Linux 8.0 i386 RedHat Linux 8.0 S.u.S.E. Linux 8.1 Trustix Secure Linux 1.5 MySQL AB MySQL 3.23.51 MySQL AB MySQL 3.23.50 MySQL AB MySQL 3.23.49 Debian Linux 3.0 sparc Debian Linux 3.0 s/390 Debian Linux 3.0 ppc Debian Linux 3.0 mipsel Debian Linux 3.0 mips Debian Linux 3.0 m68k Debian Linux 3.0 ia64 Debian Linux 3.0 ia32 Debian Linux 3.0 hppa Debian Linux 3.0 arm Debian Linux 3.0 alpha RedHat Linux 7.3 i686 RedHat Linux 7.3 i386 RedHat Linux 7.3 MySQL AB MySQL 3.23.48 MySQL AB MySQL 3.23.47 MySQL AB MySQL 3.23.46 MySQL AB MySQL 3.23.45 MySQL AB MySQL 3.23.44 MySQL AB MySQL 3.23.43 MySQL AB MySQL 3.23.42 MySQL AB MySQL 3.23.41 MySQL AB MySQL 3.23.40 MySQL AB MySQL 3.23.39 MySQL AB MySQL 3.23.38 MySQL AB MySQL 3.23.37 MySQL AB MySQL 3.23.36 Conectiva Linux 7.0 Conectiva Linux 6.0 EnGarde Secure Linux 1.0.1 MandrakeSoft Linux Mandrake 8.0 ppc MandrakeSoft Linux Mandrake 8.0 RedHat Linux 7.1 ia64 RedHat Linux 7.1 i686 RedHat Linux 7.1 i586 RedHat Linux 7.1 i386 RedHat Linux 7.1 MySQL AB MySQL 3.23.34 Debian Linux 2.2 sparc Debian Linux 2.2 powerpc Debian Linux 2.2 arm Debian Linux 2.2 alpha Debian Linux 2.2 68k Debian Linux 2.2 FreeBSD FreeBSD 4.2 FreeBSD FreeBSD 3.5.1 HP HPUX 11.11 HP HPUX 11.0 IBM AIX 4.3.3 IBM AIX 4.3.2 MandrakeSoft Linux Mandrake 7.2 MandrakeSoft Linux Mandrake 7.1 MandrakeSoft Linux Mandrake 7.0 OpenBSD OpenBSD 2.8 OpenBSD OpenBSD 2.7 OpenBSD OpenBSD 2.6 RedHat Linux 7.0 i386 RedHat Linux 7.0 alpha RedHat Linux 6.2 sparc RedHat Linux 6.2 i386 RedHat Linux 6.2 alpha RedHat Linux 5.2 sparc RedHat Linux 5.2 i386 RedHat Linux 5.2 alpha S.u.S.E. Linux 7.1 S.u.S.E. Linux 7.0 S.u.S.E. Linux 6.4 Sun Solaris 7.0 _x86 Sun Solaris 7.0 Sun Solaris 2.6 _x86 Sun Solaris 2.6 Sun Solaris 8_x86 Sun Solaris 8 MySQL AB MySQL 3.23.33 MySQL AB MySQL 3.23.32 Wirex Immunix OS 7 MySQL AB MySQL 3.23.31 MandrakeSoft Linux Mandrake 7.2 MandrakeSoft Single Network Firewall 7.2 MySQL AB MySQL 3.23.30 MySQL AB MySQL 3.23.29 MySQL AB MySQL 3.23.28 gamma MySQL AB MySQL 3.23.28 MySQL AB MySQL 3.23.27 MySQL AB MySQL 3.23.26 MySQL AB MySQL 3.23.25 MySQL AB MySQL 3.23.24 MySQL AB MySQL 3.23.23 MySQL AB MySQL 3.23.22 RedHat Linux 7.0 sparc RedHat Linux 7.0 alpha RedHat Linux 7.0 MySQL AB MySQL 3.23.10 MySQL AB MySQL 3.23.9 MySQL AB MySQL 3.23.8 MySQL AB MySQL 3.23.5 MySQL AB MySQL 3.23.4 MySQL AB MySQL 3.23.3 MySQL AB MySQL 3.23.2 MySQL AB MySQL 3.23 .x MySQL AB MySQL 3.22.32 MySQL AB MySQL 3.22.30 MySQL AB MySQL 3.22.29 MySQL AB MySQL 3.22.28 MySQL AB MySQL 3.22.27 MySQL AB MySQL 3.22.26 MySQL AB MySQL 3.22.25 MySQL AB MySQL 3.22 .x MySQL AB MySQL 3.21 .x MySQL AB MySQL 3.20.32 a MySQL AB MySQL 3.20 .x MySQL AB MySQL 5.0 MySQL AB MySQL 4.1.11a MySQL AB MySQL 4.1.10a MySQL AB MySQL 4.1.0.0alpha MySQL AB MySQL 4.1.00 Miva htmlscript 3.23.32 MandrakeSoft Linux Mandrake 2008.0 x86_64 MandrakeSoft Linux Mandrake 2008.0 MandrakeSoft Linux Mandrake 2007.1 x86_64 MandrakeSoft Linux Mandrake 2007.1 MandrakeSoft Linux Mandrake 2007.0 x86_64 MandrakeSoft Linux Mandrake 2007.0 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia64 Debian Linux 4.0 ia32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0
Not Vulnerable	MySQL AB MySQL 5.0.51
Code	To exploit this issue, attackers can use standard database client software in conjuction with standard operating system utilities.
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-12-02 xrdp Multiple Buffer Overflow Vulnerabilities
• 2008-12-02 FFmpeg Multiple Denial of Service Vulnerabilities
• 2008-12-01 SystemImager Flamethrower Insecure Temporary File Creation Vulnerabilities
• 2008-12-01 Rumpus FTP Server Command Argument Remote Buffer Overflow Vulnerability
• 2008-12-01 Rumpus FTP Server HTTP Command Remote Denial of Service Vulnerability
• 2008-11-29 Multiple ActiveWebSoftwares Products Login Parameters SQL Injection Vulnerabilities
• 2008-11-29 Venalsur Booking Centre Multiple Cross-Site Scripting Vulnerabilities
• 2008-11-28 ReVou Login SQL Injection Vulnerability
• 2008-11-28 Web Calendar System SQL Injection and Cross Site Scripting Vulnerabilities
• 2008-11-28 SailPlanner Login SQL Injection Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Tue, 02 Dec 2008 20:23:46 +0000