MySQL Multiple Vulnerabilities Network Vulnerability

Summary

MySQL is prone to a security-bypass vulnerability and to to a local privilege-escalation vulnerability. An attacker can exploit the security-bypass issue to bypass certain security restrictions and obtain sensitive information that may lead to further attacks. Local attackers can exploit the local privilege-escalation issue to gain elevated privileges on the affected computer. Versions prior to MySQL 5.1.41 are vulnerable.

Solution

Updates are available. Please see the references for details.

References

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html
http://www.mysql.com/
http://www.securityfocus.com/bid/37075
http://www.securityfocus.com/bid/37076

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4030

CVSS	Base Score: 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

IBM DB2 DBADM Privilege Revocation Security Bypass Vulnerability
IBM DB2 DML Statement Execution Remote Privilege Escalation Vulnerability (Linux)
PostgreSQL Multiple Integer Overflow Vulnerabilities July14 (Windows)
Oracle MySQL Multiple Unspecified vulnerabilities-02 July14 (Windows)
MongoDB BSON Object Information Disclosure Vulnerability

MySQL multiple Vulnerabilities

Take action and discover your vulnerabilities