Lucene search
+L

105 matches found

openvas
openvas
added 2009/10/10 12:0 a.m.46 views

SLES9: Security update for MySQL

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: mysql mysql-Max mysql-client mysql-devel mysql-shared For more information, please visit the referenced security advisories. More details may also be found b...

6.6AI score
Exploits0References1
nessus
nessus
added 2009/09/24 12:0 a.m.33 views

SuSE9 Security Update : MySQL (YOU Patch Number 12256)

Due a flaw users could access tables of other users. CVE-2008-4097, CVE-2008-4098 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid41243; scriptversion"1.11";...

4.6CVSS5.2AI score0.01851EPSS
Exploits1References4
nessus
nessus
added 2009/07/21 12:0 a.m.41 views

openSUSE Security Update : libmysqlclient-devel (libmysqlclient-devel-210)

Empty bit-strings in a query could crash the MySQL server CVE-2008-3963. Due to another flaw users could access tables of other users CVE-2008-4097, CVE-2008-4098. This update also fixes problems with the 'ORDER BY' query %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

4.6CVSS5.2AI score0.06465EPSS
Exploits2References6
openvas
openvas
added 2009/04/28 12:0 a.m.40 views

Mandrake Security Advisory MDVSA-2009:094 (mysql)

The remote host is missing an update to mysql announced via advisory MDVSA-2009:094. OpenVAS Vulnerability Test $Id: mdksa2009094.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:094 mysql Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

4.6CVSS0.2AI score0.07049EPSS
Exploits5
openvas
openvas
added 2009/04/28 12:0 a.m.65 views

Mandrake Security Advisory MDVSA-2009:094 (mysql)

The remote host is missing an update to mysql announced via advisory MDVSA-2009:094. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

4.6CVSS8.2AI score0.07049EPSS
Exploits5References1
openvas
openvas
added 2009/04/23 12:0 a.m.46 views

MySQL MyISAM Table Privileges Security Bypass Vulnerability

According to its version number, the remote version of MySQL is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

4.6CVSS7.5AI score0.02588EPSS
Exploits3References1
nessus
nessus
added 2009/04/23 12:0 a.m.250 views

Mandriva Linux Security Advisory : mysql (MDVSA-2009:094)

Multiple vulnerabilities has been found and corrected in mysql : MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not properly handle a b'' b single-quote single-quote token, aka an empty bit-string literal, which allows remote attackers to cause a denial of service daemon...

4.6CVSS7.2AI score0.07049EPSS
Exploits5References4
openvas
openvas
added 2009/01/20 12:0 a.m.31 views

SuSE Security Summary SUSE-SR:2009:001 (OpenSuSE 10.3)

The remote host is missing updates announced in advisory SUSE-SR:2009:001. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...

10CVSS1.4AI score0.21024EPSS
Exploits24
openvas
openvas
added 2009/01/02 12:0 a.m.35 views

FreeBSD Ports: mysql-server

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.6CVSS7.7AI score0.02588EPSS
Exploits3References7
nessus
nessus
added 2008/12/21 12:0 a.m.50 views

openSUSE 10 Security Update : libmysqlclient-devel (libmysqlclient-devel-5619)

Empty bit-strings in a query could crash the MySQL server CVE-2008-3963. Due to another flaw users could access tables of other users CVE-2008-4097, CVE-2008-4098. This update also fixes the previously broken mysqlhotcopy script. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...

4.6CVSS5.2AI score0.06465EPSS
Exploits2References3
nessus
nessus
added 2008/12/01 12:0 a.m.54 views

openSUSE 10 Security Update : mysql (mysql-5613)

Empty bit-strings in a query could crash the MySQL server CVE-2008-3963. Due to another flaw users could access tables of other users CVE-2008-4097, CVE-2008-4098. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

4.6CVSS5.2AI score0.06465EPSS
Exploits2References3
openvas
openvas
added 2008/11/19 12:0 a.m.38 views

Debian Security Advisory DSA 1662-1 (mysql-dfsg-5.0)

The remote host is missing an update to mysql-dfsg-5.0 announced via advisory DSA 1662-1. OpenVAS Vulnerability Test $Id: deb16621.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1662-1 mysql-dfsg-5.0 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Sof...

4.6CVSS0.6AI score0.01851EPSS
Exploits1
ubuntu
ubuntu
added 2008/11/17 8:38 p.m.86 views

USN-671-1: MySQL vulnerabilities

It was discovered that MySQL could be made to overwrite existing table files in the data directory. An authenticated user could use the DATA DIRECTORY and INDEX DIRECTORY options to possibly bypass privilege checks. This update alters table creation behaviour by disallowing the use of the MySQL...

4.6CVSS7.1AI score0.06465EPSS
Exploits4
nessus
nessus
added 2008/11/09 12:0 a.m.88 views

MySQL Enterprise Server 5.0 < 5.0.70 Privilege Bypass

The version of MySQL Enterprise Server 5.0 installed on the remote host is earlier than 5.0.70. In such versions, it is possible for a local user to circumvent privileges through the creation of MyISAM tables employing the 'DATA DIRECTORY' and 'INDEX DIRECTORY' options to overwrite existing table...

4.6CVSS6.9AI score0.02588EPSS
Exploits3References6
debian
debian
added 2008/11/06 4:20 a.m.39 views

[SECURITY] [DSA 1662-1] New mysql-dfsg-5.0 packages fix authorization bypass

------------------------------------------------------------------------ Debian Security Advisory DSA-1662-1 [email protected] http://www.debian.org/security/ Devin Carraway November 06, 2008 http://www.debian.org/security/faq -...

4.6CVSS0.1AI score0.01851EPSS
Exploits1
debian
debian
added 2008/11/06 4:20 a.m.44 views

[SECURITY] [DSA 1662-1] New mysql-dfsg-5.0 packages fix authorization bypass

------------------------------------------------------------------------ Debian Security Advisory DSA-1662-1 [email protected] http://www.debian.org/security/ Devin Carraway November 06, 2008 http://www.debian.org/security/faq -...

4.6CVSS6.5AI score0.01851EPSS
Exploits1
nessus
nessus
added 2008/11/06 12:0 a.m.54 views

Debian DSA-1662-1 : mysql-dfsg-5.0 - authorization bypass

A symlink traversal vulnerability was discovered in MySQL, a relational database server. The weakness could permit an attacker having both CREATE TABLE access to a database and the ability to execute shell commands on the database server to bypass MySQL access controls, enabling them to write to...

4.6CVSS5.4AI score0.01851EPSS
Exploits1References5
osv
osv
added 2008/11/06 12:0 a.m.62 views

DSA-1662-1 mysql-dfsg-5.0 - authorization bypass

Bulletin has no description...

4.6CVSS5.2AI score0.01624EPSS
Exploits1
nvd
nvd
added 2008/09/18 3:4 p.m.26 views

CVE-2008-4098

MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified 1 DATA DIRECTORY or 2 INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time a...

4.6CVSS6.3AI score0.01624EPSS
Exploits1References18
cve
cve
added 2008/09/17 6:6 p.m.241 views

CVE-2008-4098

CVE-2008-4098 affects MySQL (older 5.0.x) where an attacker with CREATE/ DROP privileges could bypass privilege checks by issuing CREATE TABLE on a MyISAM table with modified DATA DIRECTORY or INDEX DIRECTORY arguments tied to pathnames without symlinks, potentially referencing a table created la...

4.6CVSS6.3AI score0.01624EPSS
Exploits1References18Affected Software1
Rows per page
Query Builder