Mandrake Linux Security Advisory : MySQL (MDKSA-2007:139)

NASLDB: Mandrake Linux Security Advisory : MySQL (MDKSA-2007:139)

General

ID: 25669
Name: Mandrake Linux Security Advisory : MySQL (MDKSA-2007:139)

Summary: Checks rpm output for the updated packages

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:P
CVSS Temporal Vector: –

Port: 0
Family: Mandriva Local Security Checks
Type: Local

Description

MySQL 5.x before 5.0.36 allows local users to cause a denial of
service (database crash) by performing information_schema table
subselects and using ORDER BY to sort a single-row result, which
prevents certain structure elements from being initialized and
triggers a NULL dereference in the filesort function. This issue does
not affect MySQL 5.0.37 in Mandriva Linux 2007.1. (CVE-2007-1420)

The in_decimal::set function in item_cmpfunc.cc in MySQL before
5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers
to cause a denial of service (crash) via a crafted IF clause that
results in a divide-by-zero error and a NULL pointer dereference.
(CVE-2007-2583)

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does
not require the DROP privilege for RENAME TABLE statements, which
allows remote authenticated users to rename arbitrary tables.
(CVE-2007-2691)

Updated packages have been patched to prevent the above issues.

Exploiting

Exploit Available: –
Exploitability Ease: –

Sources

CVE: CVE-2007-1420
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: 2007/03/09
Patch Release: 2007/07/04
Plugin Release: 2007/07/05

Plugin

Version: 1.11
Filename: mandrake_MDKSA-2007-139.nasl
Filesize: 6970 bytes
MD5 Hash: 14ce88fc3ee167959eb6b8b32fc47552

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list
Dependencies: "ssh_get_info.nasl"

Latest Plugins

Latest Plugins

scip AG