Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2020 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_5_6_37_RPM.NASL
HistoryJul 26, 2017 - 12:00 a.m.

MySQL 5.6.x < 5.6.37 Multiple Vulnerabilities (RPM Check) (July 2017 CPU) (October 2017 CPU)

2017-07-2600:00:00
This script is Copyright (C) 2017-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
299
JSON

The version of MySQL running on the remote host is 5.6.x prior to 5.6.37. It is, therefore, affected by multiple vulnerabilities :

  • An unspecified flaw exists in the Memcached component that allows an unauthenticated, remote attacker to impact integrity and availability. (CVE-2017-3633)

  • Multiple unspecified flaws exist in the DML component that allow an authenticated, remote attacker to cause a denial of service condition. (CVE-2017-3634, CVE-2017-3641)

  • An unspecified flaw exists in the Connector/C and C API components that allow an authenticated, remote attacker to cause a denial of service condition. (CVE-2017-3635)

  • An unspecified flaw exists in the Client programs component that allows a local attacker to impact confidentiality, integrity, and availability.
    (CVE-2017-3636)

  • Multiple unspecified flaws exist in the Replication component that allow an authenticated, remote attacker to cause a denial of service condition. (CVE-2017-3647, CVE-2017-3649)

  • An unspecified flaw exists in the Charsets component that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2017-3648)

  • An unspecified flaw exists in the Client mysqldump component that allows an authenticated, remote attacker to impact integrity. (CVE-2017-3651)

  • Multiple unspecified flaws exist in the DDL component that allow an authenticated, remote attacker to impact confidentiality and integrity. (CVE-2017-3652, CVE-2017-3653)

  • An unspecified flaw exists in the OpenSSL Encryption component that allows an unauthenticated, remote attacker to cause a denial of service condition.
    (CVE-2017-3731)

  • An unspecified flaw exists in the Optimizer component that allows an authenticated, remote attacker to cause a denial of service condition. (CVE-2017-10279)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(101978);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/03");

  script_cve_id(
    "CVE-2017-3633",
    "CVE-2017-3634",
    "CVE-2017-3635",
    "CVE-2017-3636",
    "CVE-2017-3641",
    "CVE-2017-3647",
    "CVE-2017-3648",
    "CVE-2017-3649",
    "CVE-2017-3651",
    "CVE-2017-3652",
    "CVE-2017-3653",
    "CVE-2017-3731",
    "CVE-2017-10279"
  );
  script_bugtraq_id(
    95813,
    99722,
    99729,
    99730,
    99736,
    99767,
    99789,
    99796,
    99799,
    99802,
    99805,
    99810,
    101316
  );

  script_name(english:"MySQL 5.6.x < 5.6.37 Multiple Vulnerabilities (RPM Check) (July 2017 CPU) (October 2017 CPU)");
  script_summary(english:"Checks the version of MySQL server.");

  script_set_attribute(attribute:"synopsis", value:
"The remote database server is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of MySQL running on the remote host is 5.6.x prior to
5.6.37. It is, therefore, affected by multiple vulnerabilities :

  - An unspecified flaw exists in the Memcached component
    that allows an unauthenticated, remote attacker to
    impact integrity and availability. (CVE-2017-3633)

  - Multiple unspecified flaws exist in the DML component
    that allow an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2017-3634,
    CVE-2017-3641)

  - An unspecified flaw exists in the Connector/C and C API
    components that allow an authenticated, remote attacker
    to cause a denial of service condition. (CVE-2017-3635)

  - An unspecified flaw exists in the Client programs
    component that allows a local attacker to impact
    confidentiality, integrity, and availability.
    (CVE-2017-3636)

  - Multiple unspecified flaws exist in the Replication
    component that allow an authenticated, remote attacker
    to cause a denial of service condition. (CVE-2017-3647,
    CVE-2017-3649)

  - An unspecified flaw exists in the Charsets component
    that allows an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2017-3648)

  - An unspecified flaw exists in the Client mysqldump
    component that allows an authenticated, remote attacker
    to impact integrity. (CVE-2017-3651)

  - Multiple unspecified flaws exist in the DDL component
    that allow an authenticated, remote attacker to impact
    confidentiality and integrity. (CVE-2017-3652,
    CVE-2017-3653)

  - An unspecified flaw exists in the OpenSSL Encryption
    component that allows an unauthenticated, remote
    attacker to cause a denial of service condition.
    (CVE-2017-3731)

  - An unspecified flaw exists in the Optimizer component
    that allows an authenticated, remote attacker to cause a
    denial of service condition. (CVE-2017-10279)

Note that Nessus has not tested for these issues but has instead
relied only on the application's self-reported version number.");
  script_set_attribute(attribute:"see_also", value:"https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-37.html");
  # http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?76f5def7");
  # http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1e07fa0e");
  # https://support.oracle.com/epmos/faces/DocumentDisplay?id=2279658.1
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d520c6c8");
  script_set_attribute(attribute:"see_also", value:"https://support.oracle.com/rs?type=doc&id=2307762.1");
  # https://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/3809960.xml
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?322067e2");
  # https://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/3937099.xml
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?8e9f2a38");
  script_set_attribute(attribute:"solution", value:
"Upgrade to MySQL version 5.6.37 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-3633");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/07/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/07/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/07/26");

  script_set_attribute(attribute:"agent", value:"unix");
  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:mysql");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2017-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled");
  script_require_ports("Host/RedHat/release", "Host/AmazonLinux/release", "Host/SuSE/release", "Host/CentOS/release");

  exit(0);
}

include("mysql_version.inc");

fix_version = "5.6.37";
exists_version = "5.6";

mysql_check_rpms(mysql_packages:default_mysql_rpm_list_all, fix_ver:fix_version, exists_ver:exists_version, rhel_os_list:default_mysql_rhel_os_list, centos_os_list:default_mysql_centos_os_list, suse_os_list:default_mysql_suse_os_list, ala_os_list:default_mysql_ala_os_list, severity:SECURITY_WARNING);
VendorProductVersionCPE
oraclemysqlcpe:/a:oracle:mysql
amazonlinuxmysqlp-cpe:/a:amazon:linux:mysql
centoscentosmysqlp-cpe:/a:centos:centos:mysql
fedoraprojectfedoramysqlp-cpe:/a:fedoraproject:fedora:mysql
fermilabscientific_linuxmysqlp-cpe:/a:fermilab:scientific_linux:mysql
novellopensusemysqlp-cpe:/a:novell:opensuse:mysql
novellsuse_linuxmysqlp-cpe:/a:novell:suse_linux:mysql
oraclelinuxmysqlp-cpe:/a:oracle:linux:mysql
redhatenterprise_linuxmysqlp-cpe:/a:redhat:enterprise_linux:mysql

References

Related

nessus 37
openvas 31
fedora 2
amazon 2
osv 17
debian 7
mageia 2
altlinux 1
ubuntu 2
slackware 1
freebsd 1
ibm 11
f5 4
prion 13
cve 13
veracode 12
redhatcve 12
ubuntucve 13
redhat 1
checkpoint_advisories 1
mariadbunix 4
alpinelinux 4
aix 1
openssl 1
debiancve 4
paloalto 1
gentoo 1
nessus
nessus
MySQL 5.6.x < 5.6.37 Multiple Vulnerabilities (July 2017 CPU) (October 2017 CPU)
2017-07-19 00:00:00
Oracle MySQL 5.6.x < 5.6.37 Multiple Vulnerabilities
2017-08-24 00:00:00
Fedora 26 : community-mysql (2017-ee93493bea)
2017-08-10 00:00:00
openvas
openvas
Fedora Update for community-mysql FEDORA-2017-ee93493bea
2017-08-12 00:00:00
Fedora Update for community-mysql FEDORA-2017-7c039552fa
2017-08-12 00:00:00
Debian: Security Advisory (DSA-3922-1)
2017-07-27 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: community-mysql-5.7.19-1.fc26
2017-08-09 16:01:52
[SECURITY] Fedora 25 Update: community-mysql-5.7.19-1.fc25
2017-08-09 20:00:03
amazon
amazon
Medium: mysql56
2017-08-31 17:11:00
Medium: mysql55
2017-08-31 17:08:00
osv
osv
mysql-5.5 - security update
2017-07-28 00:00:00
mysql-5.5 - security update
2017-07-28 00:00:00
mariadb-10.1 - security update
2017-08-26 00:00:00
debian
debian
[SECURITY] [DSA 3922-1] mysql-5.5 security update
2017-07-28 20:26:58
[SECURITY] [DSA 3922-1] mysql-5.5 security update
2017-07-28 20:26:58
[SECURITY] [DLA 1043-1] mysql-5.5 security update
2017-07-28 21:41:39
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2017-09-07 12:07:16
Updated mariadb packages fix security vulnerabilities
2017-08-20 11:48:42
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version 10.1.26-alt1
2017-09-14 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2017-07-20 00:00:00
MySQL vulnerabilities
2017-07-24 00:00:00
slackware
slackware
[slackware-security] mariadb
2017-09-08 18:06:32
freebsd
freebsd
MySQL -- multiple vulnerabilities
2017-07-19 00:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by vulnerabilities in Oracle MySQL
2018-06-16 22:03:52
Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by vulnerabilities in Oracle MySQL
2018-06-16 22:03:51
Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by vulnerabilities in Oracle MySQL
2018-06-16 22:03:56
f5
f5
K92307453 : MySQL Server Replication vulnerabilities CVE-2017-3647 and CVE-2017-3649
2017-12-29 00:00:00
K73761475 : MySQL Memcached vulnerability CVE-2017-3633
2017-12-29 00:00:00
K37526132 : OpenSSL vulnerability CVE-2017-3731
2017-02-23 00:00:00
prion
prion
Code injection
2017-10-19 17:29:00
Design/Logic Flaw
2017-08-08 15:29:00
Code injection
2017-08-08 15:29:00
cve
cve
CVE-2017-10279
2017-10-19 17:29:00
CVE-2017-3633
2017-08-08 15:29:00
CVE-2017-3651
2017-08-08 15:29:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 06:37:50
Improper Access Control
2019-05-02 06:37:05
Denial Of Service (DoS) Through Out Of Bounds Read
2017-03-17 08:05:26
redhatcve
redhatcve
CVE-2017-10279
2020-04-08 19:38:36
CVE-2017-3633
2017-07-19 08:50:05
CVE-2017-3641
2020-01-05 03:33:37
ubuntucve
ubuntucve
CVE-2017-10279
2017-10-19 00:00:00
CVE-2017-3633
2017-07-19 00:00:00
CVE-2017-3651
2017-07-19 00:00:00
redhat
redhat
(RHSA-2017:2787) Important: rh-mysql56-mysql security and bug fix update
2017-09-21 07:18:30
checkpoint_advisories
checkpoint_advisories
OpenSSL ChaCha20-Poly1305 and RC4-MD5 Integer Underflow (CVE-2017-3731)
2017-02-27 00:00:00
mariadbunix
mariadbunix
CVE-2017-3651
2017-08-08 15:29:00
CVE-2017-3641
2017-08-08 15:29:00
CVE-2017-3636
2017-08-08 15:29:00
alpinelinux
alpinelinux
CVE-2017-3641
2017-08-08 15:29:00
CVE-2017-3731
2017-05-04 19:29:00
CVE-2017-3636
2017-08-08 15:29:00
aix
aix
There is a vulnerability in OpenSSL used by AIX
2017-02-17 16:58:26
openssl
openssl
Vulnerability in OpenSSL CVE-2017-3731
2017-01-26 00:00:00
debiancve
debiancve
CVE-2017-3731
2017-05-04 19:29:00
CVE-2017-3641
2017-08-08 15:29:00
CVE-2017-3636
2017-08-08 15:29:00
paloalto
paloalto
OpenSSL Vulnerability
2017-04-20 18:00:00
gentoo
gentoo
MySQL: Multiple vulnerabilities
2018-02-20 00:00:00
JSON
Related for MYSQL_5_6_37_RPM.NASL
nessus37openvas31fedora2amazon2osv17debian7mageia2altlinux1ubuntu2slackware1freebsd1ibm11f54prion13cve13veracode12redhatcve12ubuntucve13redhat1checkpoint_advisories1mariadbunix4alpinelinux4aix1openssl1debiancve4paloalto1gentoo1