| VID |
25040 |
| Severity |
20 |
| Port |
3306 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
A version of MySQL which is older than 4.0.21 or 3.23.59 is running on the host.
Two vulnerabilities have been reported in MySQL, which can be exploited by remote authenticated attackers to bypass certain security restrictions or cause a denial of service.
1) An error in "ALTER TABLE ... RENAME" operations enables the CREATE/INSERT rights for old tables, which potentially can be exploited to bypass some applied security restrictions. This vulnerability has been reported in version 3.23. Other versions may also be affected.
2) It is possible to crash or stall the server when multiple threads ALTER the same or different MERGE tables to change the UNION. This vulnerability has been reported in version 3.23 and 4.0.18. Other versions may also be affected.
* Note: This check solely relied on the version number of the remote MySQL server to assess this vulnerability, so this might be a false positive.
* References:
http://bugs.mysql.com/bug.php?id=3270
http://bugs.mysql.com/bug.php?id=2408
http://secunia.com/advisories/12783/
* Platforms Affected:
MySQL 3.23 and possibly other versions
MySQL 4.0.18 and possibly other versions
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of MySQL (3.23.59 or 4.0.21 or later), available from the MySQL Web site at http://dev.mysql.com/downloads/mysql/
For Debian GNU/Linux 3.0 (woody):
Upgrade to the latest mysql package, as listed in Debian Security Advisory DSA-562-1 at http://www.debian.org/security/2004/dsa-562
For other distributions:
Contact your vendor for upgrade or patch information. |
| Related URL |
CVE-2004-0835,CVE-2004-0837 (CVE) |
| Related URL |
11357 (SecurityFocus) |
| Related URL |
17666,17667 (ISS) |
|
