CVE-2017-3305

2017-03-17T12:53:05
ID RH:CVE-2017-3305
Type redhatcve
Reporter redhat.com
Modified 2021-08-27T04:42:11

Description

It was discovered that the MySQL client command line tools only checked after authentication whether server supported SSL. A man-in-the-middle attacker could use this flaw to hijack client's authentication to the server even if the client was configured to require SSL connection.