Full Disclosure mailing list archives

Re: Mysql 3.23.x/4.0.x Remote Root Exploit

From: Jedi/Sector One <j () pureftpd org>
Date: Sun, 14 Sep 2003 15:16:06 +0200

On Sun, Sep 14, 2003 at 05:59:59AM -0700, Elv1S wrote:

http://www.k-otik.com/exploits/09.14.mysql.c.php
don't know if this vuln is patched ?


  Yes, just upgrade MySQL to 4.0.15 or apply the small patch posted in the
advisory.

  Best regards,

-- 
 __  /*-      Frank DENIS (Jedi/Sector One) <j () 42-Networks Com>     -*\  __
 \ '/    <a href="http://www.PureFTPd.Org/";> Secure FTP Server </a>    \' /
  \/  <a href="http://www.Jedi.Claranet.Fr/";> Misc. free software </a>  \/

                    

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Mysql 3.23.x/4.0.x Remote Root Exploit Elv1S (Sep 14)
- Re: Mysql 3.23.x/4.0.x Remote Root Exploit Andreas Gietl (Sep 14)
- Re: Mysql 3.23.x/4.0.x Remote Root Exploit Jedi/Sector One (Sep 14)
  - Re: Mysql 3.23.x/4.0.x Remote Root Exploit Melvyn Sopacua (Sep 15)
- Re: Mysql 3.23.x/4.0.x Remote Root Exploit Kilian CAVALOTTI (Sep 14)