VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published May 2, 2005· Updated Apr 16, 2026

CVE-2005-0709

CVE-2005-0709

Description

MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.

Affected products

34
  • MySQL/MySQL3 versions
    cpe:2.3:a:mysql:mysql:4.1.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:mysql:mysql:4.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:4.1.10:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:4.1.3:*:*:*:*:*:*:*
  • Oracle Corporation/MySQL31 versions
    cpe:2.3:a:oracle:mysql:3.23.49:*:*:*:*:*:*:*+ 30 more
    • cpe:2.3:a:oracle:mysql:3.23.49:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.11:gamma:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.13:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.14:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.15:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.18:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.20:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.21:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.23:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.5a:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.7:gamma:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.8:gamma:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.0.9:gamma:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.1.0:alpha:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.1.2:alpha:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.1.3:beta:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:4.1.5:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

15

News mentions

0

No linked articles in our index yet.