Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MySQL Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2005-0709 - Vulnerability Database
MySQL

MySQL Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2005-0709

Medium
Reference: CVE-2005-0709
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2005-0709
Title: MySQL Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

MySQL 4.0.23 and earlier and 4.1.x up to 4.1.10 allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls as demonstrated by using strcat on_exit and exit.