Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2007-177.NASL
HistorySep 07, 2007 - 12:00 a.m.

Mandrake Linux Security Advisory : MySQL (MDKSA-2007:177)

2007-09-0700:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
10
JSON

A vulnerability was found in MySQL’s authentication protocol, making it possible for a remote unauthenticated attacker to send a specially crafted authentication request to the MySQL server causing it to crash (CVE-2007-3780).

Another flaw was discovered in MySQL that allowed remote authenticated users to gain update privileges for a table in another database via a view that refers to the external table (CVE-2007-3782).

Updated packages have been patched to prevent these issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2007:177. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(26009);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2007-2691", "CVE-2007-2692", "CVE-2007-3780", "CVE-2007-3782");
  script_xref(name:"MDKSA", value:"2007:177");

  script_name(english:"Mandrake Linux Security Advisory : MySQL (MDKSA-2007:177)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A vulnerability was found in MySQL's authentication protocol, making
it possible for a remote unauthenticated attacker to send a specially
crafted authentication request to the MySQL server causing it to crash
(CVE-2007-3780).

Another flaw was discovered in MySQL that allowed remote authenticated
users to gain update privileges for a table in another database via a
view that refers to the external table (CVE-2007-3782).

Updated packages have been patched to prevent these issues."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P");
  script_cwe_id(20, 264);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-Max");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-bench");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-ndb-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-ndb-management");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-ndb-storage");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:MySQL-ndb-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64mysql15");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64mysql15-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64mysql15-static-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libmysql15");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libmysql15-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libmysql15-static-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2007");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2007.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/09/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/09/07");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-Max-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-bench-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-client-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-common-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-ndb-extra-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-ndb-management-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-ndb-storage-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"MySQL-ndb-tools-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", cpu:"x86_64", reference:"lib64mysql15-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", cpu:"x86_64", reference:"lib64mysql15-devel-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", cpu:"x86_64", reference:"lib64mysql15-static-devel-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", cpu:"i386", reference:"libmysql15-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", cpu:"i386", reference:"libmysql15-devel-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", cpu:"i386", reference:"libmysql15-static-devel-5.0.24a-2.2mdv2007.0", yank:"mdv")) flag++;

if (rpm_check(release:"MDK2007.1", reference:"MySQL-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-Max-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-bench-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-client-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-common-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-ndb-extra-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-ndb-management-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-ndb-storage-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"MySQL-ndb-tools-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"x86_64", reference:"lib64mysql15-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"x86_64", reference:"lib64mysql15-devel-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"x86_64", reference:"lib64mysql15-static-devel-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"i386", reference:"libmysql15-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"i386", reference:"libmysql15-devel-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"i386", reference:"libmysql15-static-devel-5.0.37-2.2mdv2007.1", yank:"mdv")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxmysqlp-cpe:/a:mandriva:linux:mysql
mandrivalinuxmysql-maxp-cpe:/a:mandriva:linux:mysql-max
mandrivalinuxmysql-benchp-cpe:/a:mandriva:linux:mysql-bench
mandrivalinuxmysql-clientp-cpe:/a:mandriva:linux:mysql-client
mandrivalinuxmysql-commonp-cpe:/a:mandriva:linux:mysql-common
mandrivalinuxmysql-ndb-extrap-cpe:/a:mandriva:linux:mysql-ndb-extra
mandrivalinuxmysql-ndb-managementp-cpe:/a:mandriva:linux:mysql-ndb-management
mandrivalinuxmysql-ndb-storagep-cpe:/a:mandriva:linux:mysql-ndb-storage
mandrivalinuxmysql-ndb-toolsp-cpe:/a:mandriva:linux:mysql-ndb-tools
mandrivalinuxlib64mysql15p-cpe:/a:mandriva:linux:lib64mysql15
Rows per page:
1-10 of 171

Related

redhat 4
openvas 29
debian 2
securityvulns 5
ubuntu 3
osv 1
nessus 29
ubuntucve 4
oraclelinux 3
cvelist 4
prion 4
freebsd 2
cve 4
centos 1
veracode 3
gentoo 1
redhat
redhat
(RHSA-2007:0894) Important: mysql security update
2007-09-10 00:00:00
(RHSA-2007:0875) Important: mysql security update
2007-08-30 00:00:00
(RHSA-2008:0364) Low: mysql security and bug fix update
2008-05-20 00:00:00
openvas
openvas
Debian Security Advisory DSA 1413-1 (mysql-dfsg, mysql-dfsg-5.0, mysql-dfsg-4.1)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1413-1)
2008-01-17 00:00:00
Ubuntu: Security Advisory (USN-528-1)
2009-03-23 00:00:00
debian
debian
[SECURITY] [DSA 1413-1] New mysql packages fix multiple vulnerabilities
2007-11-26 00:00:00
[SECURITY] [DSA 1413-1] New mysql packages fix multiple vulnerabilities
2007-11-26 17:20:12
securityvulns
securityvulns
MySQL multiple security vulnerabilities
2007-10-13 00:00:00
[email protected], [email protected]
2007-10-13 00:00:00
MySQL RENAME privilege escalation
2007-07-05 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2007-10-11 00:00:00
MySQL regression
2008-04-02 00:00:00
MySQL vulnerabilities
2008-03-19 00:00:00
osv
osv
mysql - multiple
2007-11-26 00:00:00
nessus
nessus
Debian DSA-1413-1 : mysql - multiple vulnerabilities
2007-11-29 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 : mysql-dfsg-5.0 vulnerabilities (USN-528-1)
2007-11-10 00:00:00
SuSE 10 Security Update : MySQL (ZYPP Patch Number 4376)
2007-12-13 00:00:00
ubuntucve
ubuntucve
CVE-2007-3780
2007-07-15 00:00:00
CVE-2007-3782
2007-07-15 00:00:00
CVE-2007-2691
2007-05-16 00:00:00
oraclelinux
oraclelinux
Important: mysql security update
2007-08-30 00:00:00
mysql security and bug fix update
2008-05-30 00:00:00
mysql security, bug fix, and enhancement update
2008-08-01 00:00:00
cvelist
cvelist
CVE-2007-3780
2007-07-15 22:00:00
CVE-2007-3782
2007-07-15 22:00:00
CVE-2007-2691
2007-05-16 01:00:00
prion
prion
Code injection
2007-07-15 22:30:00
Code injection
2007-05-16 01:19:00
Code injection
2007-07-15 22:30:00
freebsd
freebsd
mysql -- remote dos via malformed password packet
2007-07-15 00:00:00
mysql -- renaming of arbitrary tables by authenticated users
2007-05-14 00:00:00
cve
cve
CVE-2007-3780
2007-07-15 22:30:00
CVE-2007-2691
2007-05-16 01:19:00
CVE-2007-3782
2007-07-15 22:30:00
centos
centos
mysql security update
2007-08-30 18:26:18
veracode
veracode
Privilege Escalation
2020-04-10 00:28:44
Privilege Escalation
2020-04-10 00:25:17
Privilege Escalation
2020-04-10 00:28:43
gentoo
gentoo
MySQL: Denial of Service and information leakage
2007-08-16 00:00:00
JSON
Related for MANDRAKE_MDKSA-2007-177.NASL
redhat4openvas29debian2securityvulns5ubuntu3osv1nessus29ubuntucve4oraclelinux3cvelist4prion4freebsd2cve4centos1veracode3gentoo1