Total vulnerabilities in the database
MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart, as demonstrated by modifying my.cnf.
| Software | From | Fixed in |
|---|---|---|
| oracle / mysql | 3.23.52 | 3.23.52.x |
| oracle / mysql | 3.23.53 | 3.23.53.x |
| oracle / mysql | 3.23.53a | 3.23.53a.x |
| oracle / mysql | 3.23.54 | 3.23.54.x |
| oracle / mysql | 3.23.54a | 3.23.54a.x |
| oracle / mysql | 3.23.55 | 3.23.55.x |