MySQL UNINSTALL PLUGIN Security Bypass Vulnerability Network Vulnerability

Summary

MySQL is prone to a security-bypass vulnerability. An attacker can exploit this issue to uninstall plugins without having sufficient privileges. This may result in denial-of-service conditions. Versions of MySQL 5.1.45 and prior are affected.

Solution

A fix in the source code repository is available. Please see the references for more information.

References

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-46.html
http://lists.mysql.com/commits/103144
http://www.mysql.com/
http://www.securityfocus.com/bid/39543

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-1621

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

PostgreSQL 'make check' Local Privilege Escalation Vulnerability July14 (Windows)
MySQL Denial of Service (infinite loop) Vulnerabilities
Oracle MySQL Multiple Unspecified vulnerabilities - 05 Jan14 (Windows)
MongoDB engine_v8 Denial of Service Vulnerability
Oracle Database 'XML DB component' Unspecified vulnerability

Take action and discover your vulnerabilities