Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_5_5_49.NASL
HistoryApr 22, 2016 - 12:00 a.m.

MySQL 5.5.x < 5.5.49 Multiple Vulnerabilities

2016-04-2200:00:00
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
23
JSON

The version of MySQL running on the remote host is 5.5.x prior to 5.5.49. It is, therefore, affected by multiple vulnerabilities :

  • An unspecified flaw exists in the Federated subcomponent that allows an authenticated, remote attacker to impact integrity and availability. (CVE-2016-0642)

  • An unspecified flaw exists in the DML subcomponent that allows an authenticated, remote attacker to disclose sensitive information. (CVE-2016-0643)

  • An unspecified flaw exists in the FTS subcomponent that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2016-0647)

  • An unspecified flaw exists in the PS subcomponent that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2016-0647)

  • An unspecified flaw exists in the Security: Privileges subcomponent that allows an authenticated, remote attacker to cause a denial of service condition.
    (CVE-2016-0666)

  • A man-in-the-middle spoofing vulnerability exists due to the server hostname not being verified to match a domain name in the Subject’s Common Name (CN) or SubjectAltName field of the X.509 certificate. A man-in-the-middle attacker can exploit this, by spoofing the TLS/SSL server via a certificate that appears valid, to disclose sensitive information or manipulate transmitted data.
    (CVE-2016-2047)

  • A flaw exists related to certificate validation due to the server hostname not being verified to match a domain name in the X.509 certificate. A man-in-the-middle attacker can exploit this, by spoofing the TLS/SSL server via a certificate that appears valid, to disclose sensitive information or manipulate data.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(90682);
  script_version("1.14");
  script_cvs_date("Date: 2019/11/20");

  script_cve_id(
    "CVE-2016-0642",
    "CVE-2016-0643",
    "CVE-2016-0647",
    "CVE-2016-0648",
    "CVE-2016-0666",
    "CVE-2016-2047"
  );

  script_name(english:"MySQL 5.5.x < 5.5.49 Multiple Vulnerabilities");
  script_summary(english:"Checks the version of MySQL server.");

  script_set_attribute(attribute:"synopsis", value:
"The remote database server is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of MySQL running on the remote host is 5.5.x prior to
5.5.49. It is, therefore, affected by multiple vulnerabilities :

  - An unspecified flaw exists in the Federated subcomponent
    that allows an authenticated, remote attacker to impact
    integrity and availability. (CVE-2016-0642)

  - An unspecified flaw exists in the DML subcomponent that
    allows an authenticated, remote attacker to disclose
    sensitive information. (CVE-2016-0643)

  - An unspecified flaw exists in the FTS subcomponent that
    allows an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2016-0647)

  - An unspecified flaw exists in the PS subcomponent that
    allows an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2016-0647)

  - An unspecified flaw exists in the Security: Privileges
    subcomponent that allows an authenticated, remote
    attacker to cause a denial of service condition.
    (CVE-2016-0666)

  - A man-in-the-middle spoofing vulnerability exists due to
    the server hostname not being verified to match a domain
    name in the Subject's Common Name (CN) or SubjectAltName
    field of the X.509 certificate. A man-in-the-middle
    attacker can exploit this, by spoofing the TLS/SSL
    server via a certificate that appears valid, to disclose
    sensitive information or manipulate transmitted data.
    (CVE-2016-2047)

  - A flaw exists related to certificate validation due to
    the server hostname not being verified to match a domain
    name in the X.509 certificate. A man-in-the-middle
    attacker can exploit this, by spoofing the TLS/SSL
    server via a certificate that appears valid, to disclose
    sensitive information or manipulate data.");
  # https://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ffb7b96f");
  script_set_attribute(attribute:"see_also", value:"https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-49.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to MySQL version 5.5.49 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-2047");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/30");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/04/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/04/22");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mysql_version.nasl", "mysql_login.nasl");
  script_require_keys("Settings/ParanoidReport");
  script_require_ports("Services/mysql", 3306);

  exit(0);
}

include("mysql_version.inc");

mysql_check_version(fixed:'5.5.49', min:'5.5', severity:SECURITY_WARNING);
VendorProductVersionCPE
oraclemysqlcpe:/a:oracle:mysql

Related

openvas 34
fedora 2
nessus 42
mageia 1
amazon 2
debian 7
osv 5
ubuntu 2
suse 6
f5 4
prion 6
cve 6
mariadbunix 6
alpinelinux 4
veracode 6
ubuntucve 6
ibm 3
redhat 7
oraclelinux 2
centos 2
freebsd 1
kaspersky 2
oracle 1
openvas
openvas
Oracle MySQL Server <= 5.5.48 / 5.6 <= 5.6.29 / 5.7 <= 5.7.11 Security Update (cpuapr2016v3) - Linux
2016-05-05 00:00:00
Oracle MySQL Server <= 5.5.48 / 5.6 <= 5.6.29 / 5.7 <= 5.7.11 Security Update (cpuapr2016v3) - Windows
2016-04-25 00:00:00
Fedora Update for community-mysql FEDORA-2016-1aaf308de4
2016-06-08 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: community-mysql-5.6.30-1.fc22
2016-05-16 14:58:35
[SECURITY] Fedora 23 Update: community-mysql-5.6.30-1.fc23
2016-05-15 05:37:20
nessus
nessus
Oracle MySQL 5.5.x < 5.5.49 Multiple Vulnerabilities (April 2016 CPU) (July 2016 CPU)
2016-05-02 00:00:00
Fedora 22 : community-mysql (2016-1aaf308de4)
2016-07-14 00:00:00
Amazon Linux AMI : mysql56 (ALAS-2016-701)
2016-05-19 00:00:00
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2016-05-18 23:14:22
amazon
amazon
Critical: mysql56
2016-05-18 14:00:00
Important: mysql55
2016-08-17 13:30:00
debian
debian
[SECURITY] [DLA 447-1] mysql-5.5 security update
2016-04-30 09:29:15
[SECURITY] [DSA 3557-1] mysql-5.5 security update
2016-04-26 17:32:19
[SECURITY] [DSA 3557-1] mysql-5.5 security update
2016-04-26 17:32:19
osv
osv
mysql-5.5 - security update
2016-04-26 00:00:00
CVE-2016-0648
2016-04-21 10:59:00
CVE-2016-0647
2016-04-21 10:59:00
ubuntu
ubuntu
MySQL vulnerabilities
2016-04-25 00:00:00
MySQL vulnerabilities
2016-04-21 00:00:00
suse
suse
Security update for mysql (important)
2016-05-11 18:10:17
Security update for mysql-community-server (important)
2016-05-18 14:14:23
Security update for mariadb (important)
2016-06-27 15:08:28
f5
f5
SOL70204455 - Multiple MySQL vulnerabilities
2016-08-05 00:00:00
K70204455 : Multiple MySQL vulnerabilities
2016-08-05 00:00:00
K53729441 : MySQL vulnerability CVE-2016-2047
2016-07-26 00:00:00
prion
prion
Design/Logic Flaw
2016-04-21 10:59:00
Design/Logic Flaw
2016-04-21 10:59:00
Design/Logic Flaw
2016-04-21 10:59:00
cve
cve
CVE-2016-0643
2016-04-21 10:59:00
CVE-2016-0648
2016-04-21 10:59:00
CVE-2016-2047
2016-01-27 20:59:00
mariadbunix
mariadbunix
CVE-2016-0643
2016-04-21 10:59:00
CVE-2016-0647
2016-04-21 10:59:00
CVE-2016-2047
2016-01-27 20:59:00
alpinelinux
alpinelinux
CVE-2016-0643
2016-04-21 10:59:00
CVE-2016-0647
2016-04-21 10:59:00
CVE-2016-0648
2016-04-21 10:59:00
veracode
veracode
Man-in-the-Middle (MitM)
2019-05-02 05:29:21
Denial Of Service (DoS)
2019-05-02 05:29:20
Denial Of Service (DoS)
2019-05-02 05:29:21
ubuntucve
ubuntucve
CVE-2016-2047
2016-01-27 00:00:00
CVE-2016-0647
2016-04-20 00:00:00
CVE-2016-0643
2016-04-20 00:00:00
ibm
ibm
Security Bulletin: OpenSource Oracle MySQL Vulnerability affects IBM Security Guardium (CVE-2016-2047)
2018-06-16 21:42:56
Security Bulletin: Multiple vulnerabilities in mariadb affect PowerKVM
2018-06-18 01:33:09
Security Bulletin: IBM Security Guardium is affected by Open Source Oracle MySQL Vulnerabilities (multiple CVEs)
2018-06-16 21:50:33
redhat
redhat
(RHSA-2016:1602) Important: mariadb security update
2016-08-11 12:05:12
(RHSA-2016:1481) Moderate: mariadb55-mariadb security update
2016-07-25 07:45:27
(RHSA-2016:1480) Important: mysql55-mysql security update
2016-07-25 07:45:08
oraclelinux
oraclelinux
mariadb security update
2016-08-11 00:00:00
mariadb security and bug fix update
2016-03-31 00:00:00
centos
centos
mariadb security update
2016-08-12 11:27:37
mariadb security update
2016-03-31 20:53:35
freebsd
freebsd
MySQL -- multiple vulnerabilities
2016-04-19 00:00:00
kaspersky
kaspersky
KLA10794 Multiple vulnerabilities in Oracle MySQL
2016-04-19 00:00:00
KLA10749 Multiple vulnerabilities in MariaDB
2016-01-27 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2016
2016-04-19 00:00:00
JSON
Related for MYSQL_5_5_49.NASL
openvas34fedora2nessus42mageia1amazon2debian7osv5ubuntu2suse6f54prion6cve6mariadbunix6alpinelinux4veracode6ubuntucve6ibm3redhat7oraclelinux2centos2freebsd1kaspersky2oracle1