MySQL Mysqlhotcopy Script Insecure Temporary File Creation Vulnerability

MySQL Mysqlhotcopy Script Insecure Temporary File Creation Vulnerability

mysqlhotcopy is reported to contain an insecure temporary file creation vulnerability. The result of this is that temporary files created by the application may use predictable filenames. This issue presents itself when the 'scp' method is used with the script.

A local attacker may also possibly exploit this vulnerability to execute symbolic link file overwrite attacks.

It was confirmed that this issue exists in mysqlhotcopy shipped with MySQL 3.23.49 and 4.0.20. Other versions of MySQL are likely to be affected as well. This BID will be updated as more information becomes available.