Description

mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.

Remediation

References

CVE-1999-1188

Related Vulnerabilities

Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7400)

WordPress Plugin Video Sidebar Widgets Cross-Site Scripting (6.1)

WordPress Plugin Recipe Card Blocks for Gutenberg & Elementor Cross-Site Scripting (2.8.2)

WordPress Plugin Startklar Elementor Addons Arbitrary File Upload (1.7.13)

SugarCRM Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3803)

Severity

Medium

Classification

CVE-1999-1188

Tags

Missing Update Known Vulnerabilities