| VID |
25096 |
| Severity |
30 |
| Port |
3306 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The version of MySQL Community Server installed on the remote host is earlier than 5.1.51 and thus potentially affected by multiple vulnerabilities:
- A privilege escalation vulnerability exists when using statement-based replication. Version specific comments used on a master server with a lesser release version than its slave can allow the MySQL privilege system on the slave server to be subverted. (49124)
- The improper handling of type errors during argument evaluation in extreme-value functions, e.g., 'LEAST()' or 'GREATEST()' caused server crashes. (55826)
- The creation of derived tables needing a temporary grouping table caused server crashes. (55568)
- The re-evaluation of a user-variable assignment expression after the creation of a temporary table caused server crashes. (55564)
- The pre-evaluation of 'LIKE' predicates while preparing a view caused server crashes. (54568)
- The use of 'GROUP_CONCAT()' and 'WITH ROLLUP' caused server crashes. (54476)
- The use of an intermediate temporary table and queries containing calls to 'GREATEST()' or 'LEAST()', having a list of both numeric and 'LONGBLOB' arguments, caused server crashes. (54461)
- The use of nested joins in prepared statements or stored procedures could result in infinite loops. (53544)
* Note: This check solely relied on the banner of the remote MySQL server to assess this vulnerability, so this might be a false positive.
* References:
http://bugs.mysql.com/bug.php?id=49124
http://bugs.mysql.com/bug.php?id=55826
http://bugs.mysql.com/bug.php?id=55568
http://bugs.mysql.com/bug.php?id=55564
http://bugs.mysql.com/bug.php?id=54568
http://bugs.mysql.com/bug.php?id=54476
http://bugs.mysql.com/bug.php?id=54461
http://bugs.mysql.com/bug.php?id=53544
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-51.html
* Platforms Affected:
MySQL versions prior to 5.1.51
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of MySQL (5.1.51 or later), available from the MySQL Web site at http://www.mysql.com/ |
| Related URL |
CVE-2010-3833~3840 (CVE) |
| Related URL |
43676,43677 (SecurityFocus) |
| Related URL |
(ISS) |
|
