Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_5_5_48.NASL
HistoryMar 01, 2016 - 12:00 a.m.

MySQL 5.5.x < 5.5.48 Multiple Vulnerabilities

2016-03-0100:00:00
This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
85
JSON

The version of MySQL running on the remote host is 5.5.x prior to 5.5.48. It is, therefore, affected by multiple vulnerabilities :

  • An unspecified flaw exists in the DML subcomponent that allows an authenticated, remote attacker to impact integrity and availability. (CVE-2016-0640)

  • An unspecified flaw exists in the MyISAM subcomponent that allows an authenticated, remote attacker to disclose sensitive information or cause a denial of service condition. (CVE-2016-0641)

  • An unspecified flaw exists in the DDL subcomponent that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2016-0644)

  • An unspecified flaw exists in the DML subcomponent that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2016-0646)

  • An unspecified flaw exists in the PS subcomponent that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2016-0649)

  • An unspecified flaw exists in the Replication subcomponent that allows an authenticated, remote attacker to cause a denial of service condition.
    (CVE-2016-0650)

  • A denial of service vulnerability exists in the bundled OpenSSL library due to improper handling of variables declared as TEXT or BLOB. An authenticated, remote attacker can exploit this to corrupt data or cause a denial of service condition.

  • A denial of service vulnerability exists that is triggered when handling a ‘CREATE TEMPORARY TABLE …
    SELECT’ statement involving BIT columns. An authenticated, remote attacker can exploit this to create an improper table or cause the server to exit, resulting in a denial of service condition.

  • A denial of service vulnerability exists due to an unspecified flaw in LOCK TABLES that is triggered when opening a temporary MERGE table consisting of a view in the list of tables. An authenticated, remote attacker can exploit this to cause the server to exit, resulting in a denial of service condition.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(89054);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/04/27");

  script_cve_id(
    "CVE-2016-0640",
    "CVE-2016-0641",
    "CVE-2016-0644",
    "CVE-2016-0646",
    "CVE-2016-0649",
    "CVE-2016-0650"
  );

  script_name(english:"MySQL 5.5.x < 5.5.48 Multiple Vulnerabilities");
  script_summary(english:"Checks the version of MySQL server.");

  script_set_attribute(attribute:"synopsis", value:
"The remote database server is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of MySQL running on the remote host is 5.5.x prior to
5.5.48. It is, therefore, affected by multiple vulnerabilities :

  - An unspecified flaw exists in the DML subcomponent that
    allows an authenticated, remote attacker to impact
    integrity and availability. (CVE-2016-0640)

  - An unspecified flaw exists in the MyISAM subcomponent
    that allows an authenticated, remote attacker to
    disclose sensitive information or cause a denial of
    service condition. (CVE-2016-0641)

  - An unspecified flaw exists in the DDL subcomponent that
    allows an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2016-0644)

  - An unspecified flaw exists in the DML subcomponent that
    allows an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2016-0646)

  - An unspecified flaw exists in the PS subcomponent that
    allows an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2016-0649)

  - An unspecified flaw exists in the Replication
    subcomponent that allows an authenticated, remote
    attacker to cause a denial of service condition.
    (CVE-2016-0650)

  - A denial of service vulnerability exists in the bundled
    OpenSSL library due to improper handling of variables
    declared as TEXT or BLOB. An authenticated, remote
    attacker can exploit this to corrupt data or cause a
    denial of service condition.

  - A denial of service vulnerability exists that is
    triggered when handling a 'CREATE TEMPORARY TABLE ..
    SELECT' statement involving BIT columns. An
    authenticated, remote attacker can exploit this to
    create an improper table or cause the server to exit, 
    resulting in a denial of service condition.

  - A denial of service vulnerability exists due to an
    unspecified flaw in LOCK TABLES that is triggered when
    opening a temporary MERGE table consisting of a view in
    the list of tables. An authenticated, remote attacker
    can exploit this to cause the server to exit, resulting
    in a denial of service condition.");
  script_set_attribute(attribute:"see_also", value:"https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-48.html");
  # http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html#AppendixMSQL
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a0defed6");
  script_set_attribute(attribute:"solution", value:
"Upgrade to MySQL version 5.5.48 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-0640");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/12/03");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/02/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/01");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mysql_version.nasl", "mysql_login.nasl");
  script_require_keys("Settings/ParanoidReport");
  script_require_ports("Services/mysql", 3306);

  exit(0);
}

include("mysql_version.inc");

mysql_check_version(fixed:'5.5.48', min:'5.5', severity:SECURITY_WARNING);
VendorProductVersionCPE
oraclemysqlcpe:/a:oracle:mysql

Related

nessus 30
openvas 21
osv 1
debian 5
suse 6
centos 1
ibm 2
redhat 5
ubuntu 1
oraclelinux 1
f5 4
veracode 6
prion 6
ubuntucve 6
cve 6
cvelist 6
mariadbunix 6
amazon 1
freebsd 1
kaspersky 1
oracle 1
nessus
nessus
Oracle MySQL 5.5.x < 5.5.48 Multiple Vulnerabilities (April 2016 CPU)
2016-05-02 00:00:00
MariaDB 5.5 < 5.5.48 Multiple Vulnerabilities
2016-01-04 00:00:00
MariaDB 10.1.x < 10.1.12 Multiple Vulnerabilities
2016-10-03 00:00:00
openvas
openvas
Oracle MySQL Server <= 5.5.47 / 5.6 <= 5.6.28 / 5.7 <= 5.7.10 Security Update (cpuapr2016v3) - Linux
2016-05-05 00:00:00
Oracle MySQL Server <= 5.5.47 / 5.6 <= 5.6.28 / 5.7 <= 5.7.10 Security Update (cpuapr2016v3) - Windows
2016-04-25 00:00:00
Debian: Security Advisory (DSA-3557-1)
2016-04-25 00:00:00
osv
osv
mysql-5.5 - security update
2016-04-26 00:00:00
debian
debian
[SECURITY] [DSA 3595-1] mariadb-10.0 security update
2016-06-05 19:51:35
[SECURITY] [DSA 3557-1] mysql-5.5 security update
2016-04-26 17:32:19
[SECURITY] [DSA 3595-1] mariadb-10.0 security update
2016-06-05 19:51:52
suse
suse
Security update for mysql (important)
2016-05-11 18:10:17
Security update for mysql-community-server (important)
2016-05-18 14:14:23
Security update for mariadb (important)
2016-06-17 20:09:22
centos
centos
mariadb security update
2016-08-12 11:27:37
ibm
ibm
Security Bulletin: Multiple vulnerabilities in mariadb affect PowerKVM
2018-06-18 01:33:09
Security Bulletin: IBM Security Guardium is affected by Open Source Oracle MySQL Vulnerabilities (multiple CVEs)
2018-06-16 21:50:33
redhat
redhat
(RHSA-2016:1602) Important: mariadb security update
2016-08-11 12:05:12
(RHSA-2016:1481) Moderate: mariadb55-mariadb security update
2016-07-25 07:45:27
(RHSA-2016:1480) Important: mysql55-mysql security update
2016-07-25 07:45:08
ubuntu
ubuntu
MySQL vulnerabilities
2016-04-21 00:00:00
oraclelinux
oraclelinux
mariadb security update
2016-08-11 00:00:00
f5
f5
K70204455 : Multiple MySQL vulnerabilities
2016-08-05 00:00:00
SOL70204455 - Multiple MySQL vulnerabilities
2016-08-05 00:00:00
K01409145 : Oracle MySQL vulnerability CVE-2016-0641
2016-08-17 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:29:20
Denial Of Service (DoS)
2019-05-02 05:29:21
Privilege Escalation
2019-05-02 05:29:20
prion
prion
Design/Logic Flaw
2016-04-21 10:59:00
Design/Logic Flaw
2016-04-21 10:59:00
Design/Logic Flaw
2016-04-21 10:59:00
ubuntucve
ubuntucve
CVE-2016-0649
2016-04-20 00:00:00
CVE-2016-0650
2016-04-20 00:00:00
CVE-2016-0640
2016-04-20 00:00:00
cve
cve
CVE-2016-0649
2016-04-21 10:59:00
CVE-2016-0650
2016-04-21 10:59:00
CVE-2016-0641
2016-04-21 10:59:00
cvelist
cvelist
CVE-2016-0649
2016-04-21 10:00:00
CVE-2016-0641
2016-04-21 10:00:00
CVE-2016-0644
2016-04-21 10:00:00
mariadbunix
mariadbunix
CVE-2016-0650
2016-04-21 10:59:00
CVE-2016-0641
2016-04-21 10:59:00
CVE-2016-0649
2016-04-21 10:59:00
amazon
amazon
Important: mysql55
2016-08-17 13:30:00
freebsd
freebsd
MySQL -- multiple vulnerabilities
2016-04-19 00:00:00
kaspersky
kaspersky
KLA10794 Multiple vulnerabilities in Oracle MySQL
2016-04-19 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2016
2016-04-19 00:00:00
JSON
Related for MYSQL_5_5_48.NASL
nessus30openvas21osv1debian5suse6centos1ibm2redhat5ubuntu1oraclelinux1f54veracode6prion6ubuntucve6cve6cvelist6mariadbunix6amazon1freebsd1kaspersky1oracle1