Oracle MySQL Multiple Unspecified Vulnerabilities-04 Feb15 (Windows) Network Vulnerability

Summary

This host is running Oracle MySQL and is prone to multiple unspecified vulnerabilities.

Impact

Successful exploitation will allow attackers to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. Impact Level: Application

Solution

Apply the patch from below link, http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

Insight

Unspecified errors in the MySQL Server component via unknown vectors related to DLL.

Affected

Oracle MySQL Server version 5.5.38 and earlier, and 5.6.19 and earlier on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/62525
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.osvdb.org/117330

Updated on 2015-03-25

Severity

Classification

CVE CVE-2015-0391

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P

Related Vulnerabilities

MySQL Unspecified vulnerabilities-01 July-2013 (Windows)
Oracle MySQL Multiple Unspecified vulnerabilities - 04 May14 (Windows)
Oracle MySQL 'TEMPORARY InnoDB' Tables Denial Of Service Vulnerability
Oracle Database Server Multiple Information Disclosure Vulnerabilities
MongoDB engine_v8 Denial of Service Vulnerability

Oracle MySQL Multiple Unspecified vulnerabilities-04 Feb15 (Windows)

Take action and discover your vulnerabilities