MySQL Multiple Vulnerabilities Network Vulnerability

Summary

MySQL is prone to a security-bypass vulnerability and to to a local privilege-escalation vulnerability. An attacker can exploit the security-bypass issue to bypass certain security restrictions and obtain sensitive information that may lead to further attacks. Local attackers can exploit the local privilege-escalation issue to gain elevated privileges on the affected computer. Versions prior to MySQL 5.1.41 are vulnerable.

Solution

Updates are available. Please see the references for details.

References

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html
http://www.mysql.com/
http://www.securityfocus.com/bid/37075
http://www.securityfocus.com/bid/37076

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4030
CVSS Base Score: 4.4
AV:L/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

IBM DB2 db2pd Denial Of Service Vulnerability (Win)
PostgreSQL 'make check' Local Privilege Escalation Vulnerability July14 (Windows)
MySQL Multiple Vulnerabilities
Oracle MySQL Multiple Unspecified vulnerabilities - 04 May14 (Windows)
MySQL UNINSTALL PLUGIN Security Bypass Vulnerability

MySQL multiple Vulnerabilities

Take action and discover your vulnerabilities