CVE-2005-0709
Description
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
17.936
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerability CVE-2005-0709,CVE-2005-0710,CVE-2005-0711 are affected in Mysql 4.1.10 | Windows |
| Vulnerability CVE-2005-0709,CVE-2005-0710,CVE-2005-0711 are affected in Mysql 4.1.10 (For Linux) | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234