| VID |
25041 |
| Severity |
40 |
| Port |
3306 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
A version of MySQL which is older than 4.0.21 is running on the host.
Two vulnerabilities have been reported in MySQL, which can be exploited by remote authenticated attackers to bypass certain security restrictions or cause a denial of service.
1) It has an unauthorized database GRANT privilege vulnerability, which may allow an authenticated attacker to gain elevated privileges and read or modify sensitive information in the database. This issue is due to a failure of the application to ensure that users have sufficient privileges to issue the GRANT command.
2) It has a remote denial of service vulnerability in its FULLTEXT search functionality. This issue is due to a failure of the application to handle exceptional search input. An attacker can leverage this issue to cause the affected MySQL database to crash, denying service to legitimate users.
* Note: This check solely relied on the version number of the remote MySQL server to assess this vulnerability, so this might be a false positive.
* References:
http://dev.mysql.com/doc/mysql/en/News-4.0.21.html
http://bugs.mysql.com/bug.php?id=3933
http://www.trustix.net/errata/2004/0054/
* Platforms Affected:
MySQL AB, MySQL prior to 4.0.21
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of MySQL (4.0.21 or later), available from the MySQL Web site at http://dev.mysql.com/downloads/mysql/ |
| Related URL |
CVE-2004-0957 (CVE) |
| Related URL |
11432,11435 (SecurityFocus) |
| Related URL |
17783 (ISS) |
|
