CVE-2005-0709 in Ubuntu

CVE-2005-0709

Priority

Untriaged

Description

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote
authenticated users with INSERT and DELETE privileges to execute arbitrary
code by using CREATE FUNCTION to access libc calls, as demonstrated by
using strcat, on_exit, and exit.

References

http://www.ubuntu.com/usn/usn-96-1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0709

Package

Source: mysql-dfsg-4.1 (LP Ubuntu Debian)

Upstream:

needs-triage

Package

Source: mysql-dfsg (LP Ubuntu Debian)

Upstream:

needs-triage

Package

Source: mysql-dfsg-5.0 (LP Ubuntu Debian)

Upstream:

needs-triage

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2012-06-01 15:16:13 UTC (commit 5347)