Skip to main content

CVE-2005-0711

Severity Low
Score 2.1/10

Summary

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.

  • LOW
  • LOCAL
  • NONE
  • PARTIAL
  • NONE
  • NONE

References

Advisory Timeline

  • Published