Description
Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. (dot dot).
Remediation
References
Related Vulnerabilities
Oracle Database Server Other Vulnerability (CVE-2007-3859)
Squid Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5400)
MySQL CVE-2012-0494 Vulnerability (CVE-2012-0494)
OpenSSL Other Vulnerability (CVE-2003-0131)
WordPress Plugin Advanced XML Reader XML External Entity Information Disclosure (0.3.4)