OpenBSD VuXML: Documenting security issues in the OpenBSD Ports & Packages Collection

mysql-server -- insecure file creation in mysqlhotcopy

Affected packages
		mysql-server	<	4.0.18p2

Details

VuXML ID	046e2950-f28d-11d8-87d5-00304f19272c
Discovery	2004-08-19
Entry	2004-08-20

Jeroen van Wolffelaar discovered an insecure temporary file vulnerability in the mysqlhotcopy script when using the scp method.

References

CVE Name	CAN-2004-0457
URL	http://www.debian.org/security/2004/dsa-540

Copyright © 2003-2005 Jacques Vidrine, Robert Nagy, and contributors.
Please see the source of this document for full copyright information.