Oracle MySQL Multiple Unspecified Vulnerabilities-04 Feb15 (Windows) Network Vulnerability

Summary

This host is running Oracle MySQL and is prone to multiple unspecified vulnerabilities.

Impact

Successful exploitation will allow attackers to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. Impact Level: Application

Solution

Apply the patch from below link, http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

Insight

Unspecified errors in the MySQL Server component via unknown vectors related to DLL.

Affected

Oracle MySQL Server version 5.5.38 and earlier, and 5.6.19 and earlier on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/62525
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.osvdb.org/117330

Updated on 2015-03-25

Severity

Classification

CVE CVE-2015-0391

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P

Related Vulnerabilities

PostgreSQL Conversion Encoding Remote Denial of Service Vulnerability
MySQL 'Gis_line_string::init_from_wkb()' DOS Vulnerability
PostgreSQL 'bitsubstr' Buffer Overflow Vulnerability
Oracle MySQL Multiple Unspecified vulnerabilities-03 Oct14 (Windows)
Oracle Database Server Multiple Unspecified Vulnerabilities-02 Jan2014

Oracle MySQL Multiple Unspecified vulnerabilities-04 Feb15 (Windows)

Take action and discover your vulnerabilities