MariaDB 10.1.0 < 10.1.17

🗓️ 20 Sep 2016 00:00:00Reported by TenableType

MariaDB 10.1.x < 10.1.17 Multiple Vulnerabilitie

Reporter	Title	Published	Views	Family All 368
IBM Security Bulletins	Security Bulletin: MySQL 0-day exploit (CVE-2016-6662)	8 Dec 201804:55	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in mariadb affect PowerKVM	18 Jun 201801:34	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by Open Source Oracle MySQL Vulnerabilities (CVE-2016-6662)	16 Jun 201821:47	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in openssl, gnutl, mysql, kernel, glibc, ntp shipped with SmartCloud Entry Appliance	19 Jul 202000:49	–	ibm
0day.today	MySQL / MariaDB / PerconaDB 5.5.52 / 5.6.33 / 5.7.15 - Code Execution / Privilege Escalation	12 Sep 201600:00	–	zdt
0day.today	MySQL / MariaDB / PerconaDB - 'mysql' System User Privilege Escalation / Race Condition	2 Nov 201600:00	–	zdt
0day.today	MySQL / MariaDB / PerconaDB - 'root' Privilege Escalation Vulnerability	2 Nov 201600:00	–	zdt
RedHat Linux	CVE-2016-6662	13 Mar 201813:45	–	redhat
RedHat Linux	Important: Red Hat Security Advisory: mariadb-galera security update	13 Oct 201619:35	–	redhat
RedHat Linux	mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)	13 Oct 201619:35	–	redhat

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#
# (C) Tenable Network Security, Inc.
#

include('compat.inc');

if (description)
{
  script_id(93610);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/29");

  script_cve_id("CVE-2016-6662");
  script_bugtraq_id(92912);
  script_xref(name:"EDB-ID", value:"40360");

  script_name(english:"MariaDB 10.1.0 < 10.1.17");

  script_set_attribute(attribute:"synopsis", value:
"The remote database server is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of MariaDB installed on the remote host is prior to 10.1.17. It is, therefore, affected by a vulnerability
as referenced in the 10.1.17 advisory.

  - Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x
    before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before
    5.6.32-78.0, and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass
    certain protection mechanisms by setting general_log_file to a my.cnf configuration. NOTE: this can be
    leveraged to execute arbitrary code with root privileges by setting malloc_lib. NOTE: the affected MySQL
    version information is from Oracle's October 2016 CPU. Oracle has not commented on third-party claims that
    the issue was silently patched in MySQL 5.5.52, 5.6.33, and 5.7.15. (CVE-2016-6662)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  # https://mariadb.com/docs/release-notes/community-server/old-releases/10.1/10.1.17
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3c8e11a1");
  script_set_attribute(attribute:"solution", value:
"Upgrade to MariaDB version 10.1.17 or later.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-6662");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"in_the_news", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/12/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/08/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/09/20");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mariadb:mariadb");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2016-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mariadb_nix_installed.nbin", "mariadb_win_installed.nbin", "mysql_version.nasl", "mysql_login.nasl");
  script_require_keys("installed_sw/MariaDB");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::combined_get_app_info(app:'MariaDB');

vcf::check_all_backporting(app_info:app_info);

var constraints = [
  { 'min_version' : '10.1', 'fixed_version' : '10.1.17' }
];
vcf::check_version_and_report(
    app_info:app_info,
    constraints:constraints,
    require_paranoia:TRUE,
    severity:SECURITY_HOLE
);

29 Jan 2026 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS 39.8

CVSS 210

EPSS0.89577