MySQL Multiple Vulnerabilities Network Vulnerability

Summary

MySQL is prone to a security-bypass vulnerability and to to a local privilege-escalation vulnerability. An attacker can exploit the security-bypass issue to bypass certain security restrictions and obtain sensitive information that may lead to further attacks. Local attackers can exploit the local privilege-escalation issue to gain elevated privileges on the affected computer. Versions prior to MySQL 5.1.41 are vulnerable.

Solution

Updates are available. Please see the references for details.

References

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html
http://www.mysql.com/
http://www.securityfocus.com/bid/37075
http://www.securityfocus.com/bid/37076

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4030

CVSS	Base Score: 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Oracle MySQL Multiple Unspecified vulnerabilities - 04 Jan14 (Windows)
PostgreSQL 'RESET ALL' Unauthorized Access Vulnerability
MySQL Unspecified vulnerability-04 July-2013 (Windows)
MySQL Unspecified vulnerabilities-03 July-2013 (Windows)
PostgreSQL PL/Perl and PL/Tcl Local Privilege Escalation Vulnerability

MySQL multiple Vulnerabilities

Take action and discover your vulnerabilities