DB: MYSQL Create Function Detection

This signature detects attempts to exploit a known vulnerability against MySQL. Attackers can conduct a symbolic link attack that might result in a denial-of-service condition or allow arbitrary code execution.

Extended Description

MySQL is reported prone to multiple vulnerabilities that can be exploited by a remote authenticated attacker. The following individual issues are reported: - Insecure temporary file-creation vulnerability. Reports indicate that an attacker with 'CREATE TEMPORARY TABLE' privileges on an affected installation may leverage this vulnerability to corrupt files with the privileges of the MySQL process. - Input-validation vulnerability. Remote attackers with INSERT and DELETE privileges on the 'mysql' administrative database can exploit this. Reports indicate that this issue may be leveraged to load and execute a malicious library in the context of the MySQL process. - Remote arbitrary-code execution vulnerability. Reportedly, the vulnerability may be triggered by employing the 'CREATE FUNCTION' statement to manipulate functions to control sensitive data structures. This issue may be exploited to execute arbitrary code in the context of the database process. These issues are reported to exist in MySQL versions prior to MySQL 4.0.24 and 4.1.10a.

Affected Products

Suse linux_personal

Short Name
DB:MYSQL:CREATE-FUNCTION
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DB
Keywords
CVE-2005-0709 CVE-2005-0710 Create Detection Function MYSQL bid:12781
Release Date
04/12/2005
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3725
False Positive
Unknown
Vendors

Red_hat

Conectiva

Mysql_ab

Apple

Trustix

Sun

Gentoo

Turbolinux

Sgi

Mandriva

Suse

Microsoft

Alt_linux

CVSS Score

4.6

Found a potential security threat?