MySQL Non-existent '--user' Error May Allow the Database to Run With Incorrect Privileges
|
|
SecurityTracker Alert ID: 1013994
|
|
SecurityTracker URL: http://securitytracker.com/id?1013994
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: May 18 2005
|
Impact: Modification of system information
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): prior to 4.1.12, 5.0.5
|
Description: A vulnerability was reported in MySQL. The database server may run with incorrect privileges.
If the 'mysqld' process is started with the '--user=[non_existent_user]' command line configuration option, it will run with the
privileges of the calling user instead of providing an error message.
Lachlan Mulcahy reported this vulnerability.
|
Impact: The software may run with the incorrect permissions.
|
Solution: The vendor has issued a fixed version (4.1.12), available at:
http://dev.mysql.com/downloads/
The pending version 5.0.5 will also include the fix.
|
Vendor URL: www.mysql.com/products/mysql/ (Links to External Site)
|
Cause: State error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 17 May 2005 23:10:31 -0400
Subject: [none]
|
> Security fix: If mysqld was started with --user=non_existent_user, it would run using
> the privileges of the account it was invoked from, even if that was root. (Bug #9833)
Fixed in version 4.1.12 and in pending version 5.0.5.
|
|
