CVE-2010-1848

medium

Description

Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to bypass intended table grants to read field definitions of arbitrary tables, and on 5.1 to read or delete content of arbitrary tables, via a .. (dot dot) in a table name.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7210

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10258

http://www.ubuntu.com/usn/USN-1397-1

http://www.redhat.com/support/errata/RHSA-2010-0824.html

http://www.redhat.com/support/errata/RHSA-2010-0442.html

http://www.mandriva.com/security/advisories?name=MDVSA-2010:107

http://support.apple.com/kb/HT4435

http://securitytracker.com/id?1024031

http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html

http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

http://lists.mysql.com/commits/107532

http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-47.html

http://dev.mysql.com/doc/refman/5.0/en/news-5-0-91.html

http://bugs.mysql.com/bug.php?id=53371

Details

Source: Mitre, NVD

Published: 2010-06-08

Updated: 2019-12-17

Risk Information

CVSS v2

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Severity: Medium