Description

mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.

Remediation

References

CVE-1999-1188

Related Vulnerabilities

TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21911)

XWiki Incorrect Authorization Vulnerability (CVE-2022-23615)

Python Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2010-1450)

WebLogic CVE-2019-2888 Vulnerability (CVE-2019-2888)

WordPress Plugin MailPoet-emails and newsletters in WordPress Cross-Site Scripting (3.23.1)

Severity

Medium

Classification

CVE-1999-1188

Tags

Missing Update Known Vulnerabilities