The host is running MySQL and is prone to multiple denial of service vulnerabilities.

Successful exploitation could allow users to cause a Denial of Service. Impact Level: Application

Upgrade to MySQL version 5.1.49 For updates refer to http://dev.mysql.com/downloads

The flaws are due to: - An error in 'storage/innobase/dict/dict0crea.c' in 'mysqld' allows remote authenticated users to cause a denial of service by modifying the innodb_file_format or innodb_file_per_table configuration parameters for the InnoDB storage engine. - An error in handling of 'IN' or 'CASE' operations with NULL arguments that are explicitly specified or indirectly provided by the WITH ROLLUP modifier. - An error in handling of certain arguments to the BINLOG command, which triggers an access of uninitialized memory. - An error in creating temporary tables while using InnoDB, which triggers an assertion failure.

MySQL version 5.1 before 5.1.49 on all running platform.

• http://bugs.mysql.com/bug.php?id=54477
• http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html
• http://www.openwall.com/lists/oss-security/2010/09/28/10
• https://bugzilla.redhat.com/show_bug.cgi?id=628172

---

Updated on 2015-03-25