Lucene search
This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_5_5_49_RPM.NASLHistoryMay 02, 2016 - 12:00 a.m.
Oracle MySQL 5.5.x < 5.5.49 Multiple Vulnerabilities (April 2016 CPU) (July 2016 CPU)
2016-05-0200:00:00
This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
The version of Oracle MySQL installed on the remote host is 5.5.x prior to 5.5.49. It is, therefore, affected by the following vulnerabilities :
-
An unspecified flaw exists in the Federated subcomponent that allows a local attacker to impact integrity and availability. (CVE-2016-0642)
-
An unspecified flaw exists in the DML subcomponent that allows a local attacker to disclose potentially sensitive information. (CVE-2016-0643)
-
An unspecified flaw exists in the FTS subcomponent that allows a local attacker to cause a denial of service condition. (CVE-2016-0647)
-
An unspecified flaw exists in the PS subcomponent that allows a local attacker to cause a denial of service condition. (CVE-2016-0648)
-
An unspecified flaw exists in the Security: Privileges subcomponent that allows a local attacker to cause a denial of service condition. (CVE-2016-0666)
-
A man-in-the-middle spoofing vulnerability exists due to the server hostname not being verified to match a domain name in the Subject’s Common Name (CN) or SubjectAltName field of the X.509 certificate. A man-in-the-middle attacker can exploit this, by spoofing the TLS/SSL server via a certificate that appears valid, to disclose sensitive information or manipulate transmitted data.
(CVE-2016-2047) -
An unspecified flaw exists in the Security: Encryption subcomponent that allows an unauthenticated, remote attacker to disclose potentially sensitive information.
(CVE-2016-3452) -
An unspecified flaw exists in the RBR subcomponent that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2016-5440)
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(90830);
script_version("1.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/03");
script_cve_id(
"CVE-2016-0642",
"CVE-2016-0643",
"CVE-2016-0647",
"CVE-2016-0648",
"CVE-2016-0666",
"CVE-2016-2047",
"CVE-2016-3452",
"CVE-2016-5444"
);
script_bugtraq_id(
81810,
86445,
86457,
86486,
86495,
86509,
91987,
91999
);
script_name(english:"Oracle MySQL 5.5.x < 5.5.49 Multiple Vulnerabilities (April 2016 CPU) (July 2016 CPU)");
script_summary(english:"Checks the rpm output for the updated packages.");
script_set_attribute(attribute:"synopsis", value:
"The remote host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The version of Oracle MySQL installed on the remote host is 5.5.x
prior to 5.5.49. It is, therefore, affected by the following
vulnerabilities :
- An unspecified flaw exists in the Federated subcomponent
that allows a local attacker to impact integrity and
availability. (CVE-2016-0642)
- An unspecified flaw exists in the DML subcomponent that
allows a local attacker to disclose potentially
sensitive information. (CVE-2016-0643)
- An unspecified flaw exists in the FTS subcomponent that
allows a local attacker to cause a denial of service
condition. (CVE-2016-0647)
- An unspecified flaw exists in the PS subcomponent that
allows a local attacker to cause a denial of service
condition. (CVE-2016-0648)
- An unspecified flaw exists in the Security: Privileges
subcomponent that allows a local attacker to cause a
denial of service condition. (CVE-2016-0666)
- A man-in-the-middle spoofing vulnerability exists due to
the server hostname not being verified to match a domain
name in the Subject's Common Name (CN) or SubjectAltName
field of the X.509 certificate. A man-in-the-middle
attacker can exploit this, by spoofing the TLS/SSL
server via a certificate that appears valid, to disclose
sensitive information or manipulate transmitted data.
(CVE-2016-2047)
- An unspecified flaw exists in the Security: Encryption
subcomponent that allows an unauthenticated, remote
attacker to disclose potentially sensitive information.
(CVE-2016-3452)
- An unspecified flaw exists in the RBR subcomponent that
allows an authenticated, remote attacker to cause a
denial of service condition. (CVE-2016-5440)");
# https://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/2948264.xml
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ae0f7f52");
# http://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/3089849.xml
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?42cde00c");
script_set_attribute(attribute:"see_also", value:"https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-49.html");
script_set_attribute(attribute:"see_also", value:"https://support.oracle.com/rs?type=doc&id=2120034.1");
script_set_attribute(attribute:"see_also", value:"https://support.oracle.com/rs?type=doc&id=2157431.1");
# https://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ffb7b96f");
# http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?453b5f8c");
script_set_attribute(attribute:"solution", value:
"Upgrade to MySQL version 5.5.49 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-5444");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/30");
script_set_attribute(attribute:"patch_publication_date", value:"2016/04/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/05/02");
script_set_attribute(attribute:"agent", value:"unix");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:mysql");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Databases");
script_copyright(english:"This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled");
script_require_ports("Host/RedHat/release", "Host/AmazonLinux/release", "Host/SuSE/release", "Host/CentOS/release");
exit(0);
}
include("mysql_version.inc");
fix_version = "5.5.49";
exists_version = "5.5";
mysql_check_rpms(mysql_packages:default_mysql_rpm_list_server_only, fix_ver:fix_version, exists_ver:exists_version, rhel_os_list:default_mysql_rhel_os_list, centos_os_list:default_mysql_centos_os_list, suse_os_list:default_mysql_suse_os_list, ala_os_list:default_mysql_ala_os_list, severity:SECURITY_WARNING);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | mysql | cpe:/a:oracle:mysql | |
| amazon | linux | mysql | p-cpe:/a:amazon:linux:mysql |
| centos | centos | mysql | p-cpe:/a:centos:centos:mysql |
| fedoraproject | fedora | mysql | p-cpe:/a:fedoraproject:fedora:mysql |
| fermilab | scientific_linux | mysql | p-cpe:/a:fermilab:scientific_linux:mysql |
| novell | opensuse | mysql | p-cpe:/a:novell:opensuse:mysql |
| novell | suse_linux | mysql | p-cpe:/a:novell:suse_linux:mysql |
| oracle | linux | mysql | p-cpe:/a:oracle:linux:mysql |
| redhat | enterprise_linux | mysql | p-cpe:/a:redhat:enterprise_linux:mysql |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0642
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0643
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0647
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0648
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0666
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2047
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3452
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5444
www.nessus.org/u?42cde00c
www.nessus.org/u?453b5f8c
www.nessus.org/u?ae0f7f52
www.nessus.org/u?ffb7b96f
dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-49.html
support.oracle.com/rs?type=doc&id=2120034.1
support.oracle.com/rs?type=doc&id=2157431.1
Related
nessus
nessus
MariaDB 5.5.x < 5.5.49 Multiple Vulnerabilities
2016-09-21 00:00:00
MySQL 5.5.x < 5.5.49 Multiple Vulnerabilities
2016-04-22 00:00:00
MariaDB 10.0.x < 10.0.25 Multiple Vulnerabilities
2016-06-22 00:00:00
openvas
openvas
Oracle MySQL Server <= 5.5.48 / 5.6 <= 5.6.29 / 5.7 <= 5.7.11 Security Update (cpuapr2016v3) - Linux
2016-05-05 00:00:00
Oracle MySQL Server <= 5.5.48 / 5.6 <= 5.6.29 / 5.7 <= 5.7.11 Security Update (cpuapr2016v3) - Windows
2016-04-25 00:00:00
Amazon Linux: Security Advisory (ALAS-2016-701)
2016-10-26 00:00:00
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2016-05-18 23:14:22
Updated mariadb packages fix security vulnerability
2016-07-27 00:59:16
fedora
fedora
[SECURITY] Fedora 22 Update: community-mysql-5.6.30-1.fc22
2016-05-16 14:58:35
[SECURITY] Fedora 23 Update: community-mysql-5.6.30-1.fc23
2016-05-15 05:37:20
amazon
amazon
Critical: mysql56
2016-05-18 14:00:00
Important: mysql55
2016-08-17 13:30:00
osv
osv
mysql-5.5 - security update
2016-04-26 00:00:00
CVE-2016-5444
2016-07-21 10:14:00
CVE-2016-5440
2016-07-21 10:14:00
debian
debian
[SECURITY] [DSA 3557-1] mysql-5.5 security update
2016-04-26 17:32:19
[SECURITY] [DLA 447-1] mysql-5.5 security update
2016-04-30 09:29:34
[SECURITY] [DSA 3557-1] mysql-5.5 security update
2016-04-26 17:32:37
ubuntu
ubuntu
MySQL vulnerabilities
2016-04-25 00:00:00
MySQL vulnerabilities
2016-04-21 00:00:00
suse
suse
Security update for mysql (important)
2016-05-11 18:10:17
Security update for mysql-community-server (important)
2016-05-18 14:14:23
Security update for mariadb (important)
2016-06-17 20:09:22
centos
centos
mariadb security update
2016-08-12 11:27:37
ibm
ibm
redhat
redhat
(RHSA-2016:1602) Important: mariadb security update
2016-08-11 12:05:12
(RHSA-2016:1480) Important: mysql55-mysql security update
2016-07-25 07:45:08
(RHSA-2016:1481) Moderate: mariadb55-mariadb security update
2016-07-25 07:45:27
oraclelinux
oraclelinux
mariadb security update
2016-08-11 00:00:00
f5
f5
K70204455 : Multiple MySQL vulnerabilities
2016-08-05 00:00:00
SOL70204455 - Multiple MySQL vulnerabilities
2016-08-05 00:00:00
K53729441 : MySQL vulnerability CVE-2016-2047
2016-07-26 00:00:00
prion
prion
Design/Logic Flaw
2016-07-21 10:14:00
Design/Logic Flaw
2016-04-21 10:59:00
Design/Logic Flaw
2016-07-21 10:14:00
ubuntucve
ubuntucve
redhatcve
redhatcve
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:39:41
Information Disclosure
2019-05-02 05:29:22
Information Disclosure
2019-05-02 05:29:22
cvelist
cvelist
mariadbunix
mariadbunix
cve
cve
alpinelinux
alpinelinux
freebsd
freebsd
MySQL -- multiple vulnerabilities
2016-04-19 00:00:00
kaspersky
kaspersky
KLA10794 Multiple vulnerabilities in Oracle MySQL
2016-04-19 00:00:00
Related for MYSQL_5_5_49_RPM.NASL