Sonicwall Signatures
Go to
All Categories
list.
MySQL CREATE FUNCTION Remote Code Execution 2
Category:
DB-ATTACKS
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0709
© SonicWall 2020 |
Privacy Policy
|
Conditions for use
Version: 10.0
