Description

Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. (dot dot).

Remediation

References

CVE-2001-0407

Related Vulnerabilities

Joomla! Core Security Bypass (2.5.0 - 3.9.15)

Oracle Database Server CVE-2014-2408 Vulnerability (CVE-2014-2408)

Oracle Database Server Other Vulnerability (CVE-2007-0269)

WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Security Bypass (1.3.6.4)

Internet Information Services Other Vulnerability (CVE-1999-0738)

Severity

Medium

Classification

CVE-2001-0407

Tags

Missing Update Known Vulnerabilities