Summary
This host is running Oracle MySQL and is
prone to multiple unspecified vulnerabilities.
Impact
Successful exploitation will allow attackers
to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
Impact Level: Application
Solution
Apply the patch from below link,
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Insight
Unspecified errors in the MySQL Server
component via unknown vectors related to DLL.
Affected
Oracle MySQL Server version 5.5.38 and
earlier, and 5.6.19 and earlier on Windows.
Detection
Get the installed version with the help of
detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2015-0391 -
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:N/I:N/A:P
Related Vulnerabilities
- Oracle MySQL Multiple Unspecified vulnerabilities - 02 Jan14 (Windows)
- IBM DB2 Multiple Denial of Service Vulnerabilities
- MySQL 'Gis_line_string::init_from_wkb()' DOS Vulnerability
- MongoDB mongod Malformed X.509 Certificate Handling Remote DoS Vulnerability
- MySQL mysqlhotcopy script insecure temporary file