Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-0004 | 4.6 |
The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.
|
05-08-2022 - 14:26 | 14-04-2005 - 04:00 | |
CVE-2005-0709 | 4.6 |
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.
|
17-12-2019 - 17:12 | 02-05-2005 - 04:00 | |
CVE-2005-0710 | 4.6 |
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to bypass library path restrictions and execute arbitrary libraries by using INSERT INTO to modify the mysql.func table, which is pr
|
17-12-2019 - 17:12 | 02-05-2005 - 04:00 | |
CVE-2005-0711 | 2.1 |
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.
|
17-12-2019 - 17:12 | 02-05-2005 - 04:00 | |
CVE-2004-0837 | 2.6 |
MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service (crash or hang) via multiple threads that simultaneously alter MERGE table UNIONs.
|
17-12-2019 - 17:11 | 03-11-2004 - 05:00 | |
CVE-2004-0835 | 7.5 |
MySQL 3.x before 3.23.59, 4.x before 4.0.19, 4.1.x before 4.1.2, and 5.x before 5.0.1, checks the CREATE/INSERT rights of the original table instead of the target table in an ALTER TABLE RENAME operation, which could allow attackers to conduct unauth
|
07-10-2019 - 16:42 | 03-11-2004 - 05:00 |