CVE-2003-0150 — Vulnetix

CVE-2003-0150 PUBLISHED

Reported by mitre · Published March 21, 2003

MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart, as demonstrated by modifying my.cnf.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, n/a, n/a

Exploit Intelligence

MySQL 3.23.x - 'mysqld' Local Privilege Escalation - Linux local Exploit (variot)
MySQL 3.23.x - 'mysqld' Local Privilege Escalation - Linux local Exploit (variot)
MySQL 3.23.x - 'mysqld' Local Privilege Escalation - Linux local Exploit (variot)
http://www.securityfocus.com/bid/7052 (vulncheck-nvd)
MySQL / MariaDB / PerconaDB 5.5.52 / 5.6.33 / 5.7.15 - Code Execution / Privilege Escalation (0day-today)

Timeline

Mar 8, 2003 PoC Published
Mar 21, 2003 CVE Published
Sep 11, 2016 PoC Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score

References

20030318 [OpenPKG-SA-2003.022] OpenPKG Security Advisory (mysql) mailing-listx_refsource_BUGTRAQ
oval:org.mitre.oval:def:442 vdb-entrysignaturex_refsource_OVAL
CLA-2003:743 vendor-advisoryx_refsource_CONECTIVA
20030318 GLSA: mysql (200303-14) mailing-listx_refsource_BUGTRAQ
DSA-303 vendor-advisoryx_refsource_DEBIAN
mysql-datadir-root-privileges(11510) vdb-entryx_refsource_XF
RHSA-2003:094 vendor-advisoryx_refsource_REDHAT
MDKSA-2003:057 vendor-advisoryx_refsource_MANDRAKE
VU#203897 third-party-advisoryx_refsource_CERT-VN
20030310 Re: MySQL user can be changed to root mailing-listx_refsource_BUGTRAQ
ESA-20030324-012 vendor-advisoryx_refsource_ENGARDE
RHSA-2003:093 vendor-advisoryx_refsource_REDHAT
7052 vdb-entryx_refsource_BID
20030308 MySQL_user_can_be_changed_to_root? mailing-listx_refsource_BUGTRAQ

Open in Interactive Console →