Security Advisory

CVE-2005-0711

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-03-11 05:00:00

Last updated 2024-08-07 21:21:06

Assigner redhat

State PUBLISHED

Description

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.

← Browse all CVEs View on cve.org ↗