Oracle MySQL Multiple Unspecified Vulnerabilities-01 Oct-2013 (Windows) Network Vulnerability

Summary

This host is running Oracle MySQL and is prone to multiple unspecified vulnerabilities.

Impact

Successful exploitation will allow remote attackers to disclose sensitive information, manipulate certain data, cause a DoS (Denial of Service) and bypass certain security restrictions. Impact Level: Application

Solution

Apply the patch from below link, http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html

Insight

Unspecified errors in the MySQL Server component via unknown vectors related to Optimizer and InnoDB.

Affected

Oracle MySQL version 5.6.12 and earlier.

Detection

Get the installed version of MySQL with the help of detect NVT and check it is vulnerable or not.

References

http://secunia.com/advisories/55327
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
http://www.osvdb.com/98510
http://www.osvdb.com/98511
http://www.osvdb.com/98512

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-5767, CVE-2013-5786, CVE-2013-5793

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P

Related Vulnerabilities

PostgreSQL 'intarray' Module 'gettoken()' Buffer Overflow Vulnerability
IBM DB2 XML Feature DoS and CREATE VARIABLE Security Bypass Vulnerabilities
PostgreSQL Multiple Security Vulnerabilities
Oracle MySQL Prior to 5.1.51 Multiple Denial Of Service Vulnerabilities
MySQL mysqlhotcopy script insecure temporary file

Oracle MySQL Multiple Unspecified vulnerabilities-01 Oct-2013 (Windows)

Take action and discover your vulnerabilities