Description

The default configuration of MySQL 3.20.32 through 3.23.52, when running on Windows, does set the bind address to the loopback interface, which allows remote attackers to connect to the database.

Remediation

References

CVE-2002-1921

Related Vulnerabilities

WordPress Plugin WP-OliveCart Multiple Vulnerabilities (3.1.2)

MediaWiki Improper Input Validation Vulnerability (CVE-2014-5243)

Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-20408)

WordPress Plugin Filedownload Multiple Vulnerabilities (1.4)

Squid Improper Input Validation Vulnerability (CVE-2016-2570)

Severity

High

Classification

CVE-2002-1921

Tags

Missing Update Known Vulnerabilities