Privilege escalation vulnerability in MySQL and MariaDB by abusing MySQL logging functions
|ID: oval:org.secpod.oval:def:37184||Date: (C)2016-09-16 (M)2017-11-15|
|Class: VULNERABILITY||Family: unix|
The host is installed with MySQL 5.1.73 and earlier on Centos 6, mariadb 5.5.50 and earlier on Centos 7 or MySQL 5.0.95 and earlier on Centos 5 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle MySQL logging functions. Successful exploitation allows remote attackers to execute arbitrary code.