MySQL < 5.0.23 / 5.1.12 Denial of Service

low Nessus Plugin ID 17831

Synopsis

The remote database server is vulnerable to a denial of service attack.

Description

The version of MySQL installed on the remote host is older than 5.0.23 or 5.1.12. As such, it reportedly is affected by an off-by-one buffer overflow.

A local attacker could use this flaw to crash the service.

Note that this vulnerability is disputed as the attacker needs extensive permissions to launch the attack. Such permissions allow him to disrupt the service.

Solution

Upgrade to MySQL version 5.0.23 / 5.1.12 or later.

See Also

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-12.html

http://dev.mysql.com/doc/refman/5.0/en/news-5-0-23.html

https://bugs.mysql.com/bug.php?id=20622

Plugin Details

Severity: Low

ID: 17831

File Name: mysql_5_0_23_or_5_1_12.nasl

Version: 1.4

Type: remote

Family: Databases

Published: 1/18/2012

Updated: 11/15/2018

Configuration: Enable paranoid mode

Supported Sensors: Frictionless Assessment Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Low

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:mysql:mysql

Required KB Items: Settings/ParanoidReport

Vulnerability Publication Date: 6/22/2006

Reference Information

CVE: CVE-2006-3486