Korean
<< Back
VID 25171
Severity 40
Port 3306
Protocol TCP
Class DB
Detailed Description The version of MySQL installed on the remote host is earlier than 5.6.22 and is, therefore, potentially affected by the following vulnerabilities :

- Server : DDL
- Server : InnoDB : DDL : Foreign Key
- Server : InnoDB : DML
- Server : Optimizer
- Server : Pluggable Auth
- Server : Replication
- Server : Security : Encryption
- Server : Security : Privileges : Foreign Key

* Note: This check solely relied on the banner of the remote MySQL server to assess this vulnerability, so this might be a false positive.

* References:
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixMSQL

* Platforms Affected:
MySQL versions 5.6 prior to 5.6.22
Any operating system Any version
Recommendation Upgrade to the latest version of MySQL (5.6.22 or later), available from the MySQL Web site at http://www.mysql.com/
Related URL CVE-2014-6568,CVE-2015-0374,CVE-2015-0381,CVE-2015-0382,CVE-2015-0385,CVE-2015-0391,CVE-2015-0409,CVE-2015-0411,CVE-2015-0432 (CVE)
Related URL 72191,72200,72205,72210,72214,72217,72223,72227,72229 (SecurityFocus)
Related URL (ISS)