Oracle MySQL Multiple Unspecified Vulnerabilities-04 Feb15 (Windows) Network Vulnerability

Summary

This host is running Oracle MySQL and is prone to multiple unspecified vulnerabilities.

Impact

Successful exploitation will allow attackers to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. Impact Level: Application

Solution

Apply the patch from below link, http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

Insight

Unspecified errors in the MySQL Server component via unknown vectors related to DLL.

Affected

Oracle MySQL Server version 5.5.38 and earlier, and 5.6.19 and earlier on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/62525
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.osvdb.org/117330

Updated on 2015-03-25

Severity

Classification

CVE CVE-2015-0391

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P

Related Vulnerabilities

MySQL Authentication Bypass
MySQL Unspecified vulnerability-04 July-2013 (Windows)
Oracle MySQL 'TEMPORARY InnoDB' Tables Denial Of Service Vulnerability
IBM DB2 DML Statement Execution Remote Privilege Escalation Vulnerability
MySQL Authentication Error Message User Enumeration Vulnerability

Oracle MySQL Multiple Unspecified vulnerabilities-04 Feb15 (Windows)

Take action and discover your vulnerabilities