Summary
The host is running Oracle MySQL server and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow an attacker to disclose potentially sensitive information, manipulate certain data.
Impact Level: Application
Solution
Apply the patch or upgrade to latest version,
https://support.oracle.com/rs?type=doc&id=1475188.1
Insight
The flaws are due to multiple unspecified errors in MySQL server component vectors related to innoDB plugin, server full text search and innoDB.
Affected
Oracle MySQL version 5.1.x to 5.1.63 and
Oracle MySQL version 5.5.x to 5.5.25 on windows
References
Severity
Classification
-
CVE CVE-2012-3166, CVE-2012-3167, CVE-2012-3173 -
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:N/I:N/A:P
Related Vulnerabilities
- PostgreSQL 'intarray' Module 'gettoken()' Buffer Overflow Vulnerability
- Oracle MySQL Multiple Unspecified vulnerabilities - 05 Jan14 (Windows)
- IBM DB2 Self Tuning Memory Manager (STMM) DOS Vulnerability (Win)
- MySQL mysqlhotcopy script insecure temporary file
- PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability