Boletines de Vulnerabilidades |
Sobreescritura de archivos arbitrarios con mysqlbug (script que acompaña a MySQL) |
|
Clasificación de la vulnerabilidad |
|
| Propiedad | Valor |
| Nivel de Confianza | official+tested |
| Impacto | Ocultacion del rastro |
| Dificultad | Principiante |
| Requerimientos del atacante | Acceso remoto con cuenta |
Información sobre el sistema |
|
| Propiedad | Valor |
| Fabricant afectat | GNU/Linux |
| Software afectado | MySQL |
Descripción |
|
|
Se ha descubierto una vulnerabilidad en el script mysqlbug que acompaña al paquete MySQL. La explotación de esta vulnerabilidad podría permitir a un atacante local la sobreescritura de archivos arbitrarios en el sistema en determinadas condiciones mediante la creación de enlaces simbólicos especialmente diseñados. El script mysqld_multi es también se ve afectado por esta vulnerabilidad. |
|
Solución |
|
|
Si lo desea, aplique los mecanismos de actualización propios de su distribución, o bien baje las fuentes del software y compílelo usted mismo. Actualización de software MySQL Actualizar a la última versión disponible en el repositorio de código de Mysql http://www.mysql.com/doc/en/Installing_source_tree.html Debian Linux Debian Linux 3.0 Source http://security.debian.org/pool/updates/main/m/mysql/mysql_3.23.49-8.6.dsc http://security.debian.org/pool/updates/main/m/mysql/mysql_3.23.49-8.6.diff.gz http://security.debian.org/pool/updates/main/m/mysql/mysql_3.23.49.orig.tar.gz Paquetes independientes de arquitectura http://security.debian.org/pool/updates/main/m/mysql/mysql-common_3.23.49-8.6_all.deb Alpha http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_alpha.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_alpha.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_alpha.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_alpha.deb ARM http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_arm.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_arm.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_arm.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_i386.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_i386.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_i386.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_ia64.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_ia64.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_ia64.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_ia64.deb HP Precision http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_hppa.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_hppa.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_hppa.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_m68k.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_m68k.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_m68k.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_mips.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_mips.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_mips.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_mipsel.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_mipsel.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_mipsel.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_powerpc.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_powerpc.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_powerpc.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_s390.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_s390.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_s390.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10_3.23.49-8.6_sparc.deb http://security.debian.org/pool/updates/main/m/mysql/libmysqlclient10-dev_3.23.49-8.6_sparc.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-client_3.23.49-8.6_sparc.deb http://security.debian.org/pool/updates/main/m/mysql/mysql-server_3.23.49-8.6_sparc.deb Mandrake Linux Mandrake Linux 9.1 i386 ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/RPMS/libmysql12-4.0.11a-5.2.91mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/RPMS/libmysql12-devel-4.0.11a-5.2.91mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/RPMS/MySQL-4.0.11a-5.2.91mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/RPMS/MySQL-Max-4.0.11a-5.2.91mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/RPMS/MySQL-bench-4.0.11a-5.2.91mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/RPMS/MySQL-client-4.0.11a-5.2.91mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/RPMS/MySQL-common-4.0.11a-5.2.91mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.1/SRPMS/MySQL-4.0.11a-5.2.91mdk.src.rpm PPC ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/RPMS/libmysql12-4.0.11a-5.2.91mdk.ppc.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/RPMS/libmysql12-devel-4.0.11a-5.2.91mdk.ppc.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/RPMS/MySQL-4.0.11a-5.2.91mdk.ppc.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/RPMS/MySQL-Max-4.0.11a-5.2.91mdk.ppc.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/RPMS/MySQL-bench-4.0.11a-5.2.91mdk.ppc.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/RPMS/MySQL-client-4.0.11a-5.2.91mdk.ppc.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/RPMS/MySQL-common-4.0.11a-5.2.91mdk.ppc.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/ppc/9.1/SRPMS/MySQL-4.0.11a-5.2.91mdk.src.rpm Mandrake Linux 9.2 i386 ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/RPMS/libmysql12-4.0.15-1.1.92mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/RPMS/libmysql12-devel-4.0.15-1.1.92mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/RPMS/MySQL-4.0.15-1.1.92mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/RPMS/MySQL-Max-4.0.15-1.1.92mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/RPMS/MySQL-bench-4.0.15-1.1.92mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/RPMS/MySQL-client-4.0.15-1.1.92mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/RPMS/MySQL-common-4.0.15-1.1.92mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/9.2/SRPMS/MySQL-4.0.15-1.1.92mdk.src.rpm AMD64 ftp://ftp.rediris.es/mirror/mandrake/updates/amd64/9.2/RPMS/MySQL-4.0.15-1.1.92mdk.amd64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/amd64/9.2/RPMS/MySQL-Max-4.0.15-1.1.92mdk.amd64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/amd64/9.2/RPMS/MySQL-bench-4.0.15-1.1.92mdk.amd64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/amd64/9.2/RPMS/MySQL-client-4.0.15-1.1.92mdk.amd64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/amd64/9.2/RPMS/MySQL-common-4.0.15-1.1.92mdk.amd64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/amd64/9.2/SRPMS/MySQL-4.0.15-1.1.92mdk.src.rpm Corporate Server 2.1 i386 ftp://ftp.rediris.es/mirror/mandrake/updates/corporate/2.1/RPMS/libmysql10-3.23.56-1.5.C21mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/corporate/2.1/RPMS/libmysql10-devel-3.23.56-1.5.C21mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/corporate/2.1/RPMS/MySQL-3.23.56-1.5.C21mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/corporate/2.1/RPMS/MySQL-Max-3.23.56-1.5.C21mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/corporate/2.1/RPMS/MySQL-bench-3.23.56-1.5.C21mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/corporate/2.1/RPMS/MySQL-client-3.23.56-1.5.C21mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/corporate/2.1/SRPMS/MySQL-3.23.56-1.5.C21mdk.src.rpm x86_64 ftp://ftp.rediris.es/mirror/mandrake/updates/x86_64/corporate/2.1/RPMS/libmysql10-3.23.56-1.5.C21mdk.x86_64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/x86_64/corporate/2.1/RPMS/libmysql10-devel-3.23.56-1.5.C21mdk.x86_64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/x86_64/corporate/2.1/RPMS/MySQL-3.23.56-1.5.C21mdk.x86_64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/x86_64/corporate/2.1/RPMS/MySQL-Max-3.23.56-1.5.C21mdk.x86_64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/x86_64/corporate/2.1/RPMS/MySQL-bench-3.23.56-1.5.C21mdk.x86_64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/x86_64/corporate/2.1/RPMS/MySQL-client-3.23.56-1.5.C21mdk.x86_64.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/x86_64/corporate/2.1/SRPMS/MySQL-3.23.56-1.5.C21mdk.src.rpm Mandrakelinux 10.0 i386 ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/RPMS/libmysql12-4.0.18-1.1.100mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/RPMS/libmysql12-devel-4.0.18-1.1.100mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/RPMS/MySQL-4.0.18-1.1.100mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/RPMS/MySQL-Max-4.0.18-1.1.100mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/RPMS/MySQL-bench-4.0.18-1.1.100mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/RPMS/MySQL-client-4.0.18-1.1.100mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/RPMS/MySQL-common-4.0.18-1.1.100mdk.i586.rpm ftp://ftp.rediris.es/mirror/mandrake/updates/10.0/SRPMS/MySQL-4.0.18-1.1.100mdk.src.rpm Red Hat Linux Red Hat Desktop (v. 3) AMD64 mysql-3.23.58-2.3.x86_64.rpm mysql-bench-3.23.58-2.3.x86_64.rpm mysql-devel-3.23.58-2.3.x86_64.rpm SRPMS mysql-3.23.58-2.3.src.rpm i386 mysql-3.23.58-2.3.i386.rpm mysql-bench-3.23.58-2.3.i386.rpm mysql-devel-3.23.58-2.3.i386.rpm mysql-3.23.58-2.3.i386.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux AS (v. 3) AMD64 mysql-3.23.58-2.3.x86_64.rpm mysql-bench-3.23.58-2.3.x86_64.rpm mysql-devel-3.23.58-2.3.x86_64.rpm SRPMS mysql-3.23.58-2.3.src.rpm i386 mysql-3.23.58-2.3.i386.rpm mysql-bench-3.23.58-2.3.i386.rpm mysql-devel-3.23.58-2.3.i386.rpm mysql-3.23.58-2.3.i386.rpm mysql-3.23.58-2.3.i386.rpm ia64 mysql-3.23.58-2.3.ia64.rpm mysql-bench-3.23.58-2.3.ia64.rpm mysql-devel-3.23.58-2.3.ia64.rpm ppc mysql-3.23.58-2.3.ppc.rpm mysql-bench-3.23.58-2.3.ppc.rpm mysql-devel-3.23.58-2.3.ppc.rpm ppc64 mysql-3.23.58-2.3.ppc64.rpm s390 mysql-3.23.58-2.3.s390.rpm mysql-bench-3.23.58-2.3.s390.rpm mysql-devel-3.23.58-2.3.s390.rpm mysql-3.23.58-2.3.s390.rpm s390x mysql-3.23.58-2.3.s390x.rpm mysql-bench-3.23.58-2.3.s390x.rpm mysql-devel-3.23.58-2.3.s390x.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux ES (v. 3) AMD64 mysql-3.23.58-2.3.x86_64.rpm mysql-bench-3.23.58-2.3.x86_64.rpm mysql-devel-3.23.58-2.3.x86_64.rpm SRPMS mysql-3.23.58-2.3.src.rpm i386 mysql-3.23.58-2.3.i386.rpm mysql-bench-3.23.58-2.3.i386.rpm mysql-devel-3.23.58-2.3.i386.rpm mysql-3.23.58-2.3.i386.rpm mysql-3.23.58-2.3.i386.rpm ia64 mysql-3.23.58-2.3.ia64.rpm mysql-bench-3.23.58-2.3.ia64.rpm mysql-devel-3.23.58-2.3.ia64.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux WS (v. 3) AMD64 mysql-3.23.58-2.3.x86_64.rpm mysql-bench-3.23.58-2.3.x86_64.rpm mysql-devel-3.23.58-2.3.x86_64.rpm SRPMS mysql-3.23.58-2.3.src.rpm i386 mysql-3.23.58-2.3.i386.rpm mysql-bench-3.23.58-2.3.i386.rpm mysql-devel-3.23.58-2.3.i386.rpm mysql-3.23.58-2.3.i386.rpm mysql-3.23.58-2.3.i386.rpm ia64 mysql-3.23.58-2.3.ia64.rpm mysql-bench-3.23.58-2.3.ia64.rpm mysql-devel-3.23.58-2.3.ia64.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux AS (v. 2.1) SRPMS mysql-3.23.58-1.72.1.src.rpm i386 mysql-3.23.58-1.72.1.i386.rpm mysql-devel-3.23.58-1.72.1.i386.rpm mysql-server-3.23.58-1.72.1.i386.rpm ia64: mysql-3.23.58-1.72.1.ia64.rpm mysql-devel-3.23.58-1.72.1.ia64.rpm mysql-server-3.23.58-1.72.1.ia64.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux ES (v. 2.1) SRPMS mysql-3.23.58-1.72.1.src.rpm i386 mysql-3.23.58-1.72.1.i386.rpm mysql-devel-3.23.58-1.72.1.i386.rpm mysql-server-3.23.58-1.72.1.i386.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux WS (v. 2.1) SRPMS mysql-3.23.58-1.72.1.src.rpm i386 mysql-3.23.58-1.72.1.i386.rpm mysql-devel-3.23.58-1.72.1.i386.rpm mysql-server-3.23.58-1.72.1.i386.rpm https://rhn.redhat.com/ Red Hat Linux Advanced Workstation 2.1 Itanium Processor SRPMS mysql-3.23.58-1.72.1.src.rpm ia64 mysql-3.23.58-1.72.1.ia64.rpm mysql-devel-3.23.58-1.72.1.ia64.rpm mysql-server-3.23.58-1.72.1.ia64.rpm https://rhn.redhat.com/ Fedora Fedora Core 2 http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/SRPMS/mysql-3.23.58-9.1.src.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/x86_64/mysql-3.23.58-9.1.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/x86_64/mysql-server-3.23.58-9.1.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/x86_64/mysql-devel-3.23.58-9.1.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/x86_64/mysql-bench-3.23.58-9.1.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/x86_64/debug/mysql-debuginfo-3.23.58-9.1.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/i386/mysql-3.23.58-9.1.i386.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/i386/mysql-server-3.23.58-9.1.i386.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/i386/mysql-devel-3.23.58-9.1.i386.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/i386/mysql-bench-3.23.58-9.1.i386.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/i386/debug/mysql-debuginfo-3.23.58-9.1.i386.rpm |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE |
CAN-2004-0381 CAN-2004-0388 |
| BID | |
Recursos adicionales |
|
|
Shaun Colley Security Advisory http://nettwerked.mg2.org/advisories/mysqlbug Debian Security Advisory DSA 483-1 http://lists.debian.org/debian-security-announce/debian-security-announce-2004/msg00081.html MandrakeSoft Security Advisory MDKSA-2004:034 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:034 Red Hat Security Advisory RHSA-2004:569-16 https://rhn.redhat.com/errata/RHSA-2004-569.html Red Hat Security Advisory RHSA-2004:597-06 https://rhn.redhat.com/errata/RHSA-2004-597.html Fedora Update Notification FEDORA-2004-530 http://www.redhat.com/archives/fedora-announce-list/2004-December/msg00047.html |
|
Histórico de versiones |
||
| Versión | Comentario | Data |
| 1.0 | Aviso emitido | 2004-03-26 |
| 1.1 | Añadido CAN. Aviso de Debian emitido. | 2004-04-15 |
| 1.2 | El script mysqld_multi es también vulnerable | 2004-04-16 |
| 1.3 | Aviso emitido por Mandrake | 2004-04-20 |
| 1.4 | Avisos emitidos por Red Hat (RHSA-2004:569-16, RHSA-2004:597-06) | 2004-10-21 |
| 1.5 | Aviso emitido por Fedora (FEDORA-2004-530) | 2004-12-09 |