Family: Databases --> Category: infos
MySQL mysqlhotcopy script insecure temporary file Vulnerability Scan
Vulnerability Scan Summary
Checks for the remote MySQL version
Detailed Explanation for this Vulnerability Test
You are running a version of MySQL which is older than version 4.0.21.
mysqlhotcopy is reported to contain an insecure temporary file creation
The result of this is that temporary files created by the application may
use predictable filenames.
A local attacker may also possibly exploit this vulnerability to execute
symbolic link file overwrite attacks.
*** Note : this vulnerability is local only
Threat Level: Medium
Solution : Upgrade to the latest version of MySQL 4.0.21 or newer
Click HERE for more information and discussions on this network vulnerability scan.