The host is running MySQL and is prone to user enumeration vulnerability.
Successful exploitation allows attackers to obtain valid usernames, which may aid them in brute-force password cracking or other attacks. Impact Level: Application
For Maria DB upgrade to 5.5.29, 5.3.12, 5.2.14 or later. For updates refer to https://mariadb.org/ For MySQL apply the updates from vendor, http://www.mysql.com/
Mysql server will respond with a different message than Access Denied, when attacker authenticates using an incorrect password with the old authentication mechanism mysql 4.x and below to a mysql 5.x server.
MySQL version 5.5.19 and possibly other versions MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66 and possibly other versions
Updated on 2015-03-25
- IBM DB2 Multiple Security Bypass Vulnerabilities (May-11)
- IBM DB2 DML Statement Execution Remote Privilege Escalation Vulnerability (Linux)
- Oracle MySQL Multiple Unspecified vulnerabilities-02 July14 (Windows)
- MySQL Unspecified vulnerabilities-05 July-2013 (Windows)
- Oracle Database Server Multiple Unspecified Vulnerabilities-01 Jan2014