ID de Prueba:	1.3.6.1.4.1.25623.1.0.100356
Categoría:	Databases
Título:	MySQL < 5.1.41 Multiple Vulnerabilities
Resumen:	MySQL is prone to a security bypass vulnerability and to a local; privilege escalation vulnerability.
Descripción:	Summary: MySQL is prone to a security bypass vulnerability and to a local privilege escalation vulnerability. Vulnerability Impact: An attacker can exploit the security-bypass issue to bypass certain security restrictions and obtain sensitive information that may lead to further attacks. Local attackers can exploit the local privilege-escalation issue to gain elevated privileges on the affected computer. Affected Software/OS: Versions prior to MySQL 5.1.41 are vulnerable. Solution: Updates are available. Please see the references for details. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4028 ADV-2010-1107 http://www.vupen.com/english/advisories/2010/1107 RHSA-2010:0109 http://www.redhat.com/support/errata/RHSA-2010-0109.html SUSE-SR:2010:011 http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html [commits] 20091020 bzr commit into mysql-4.1 branch (joro:2709) Bug#47320 http://lists.mysql.com/commits/87446 [oss-security] 20091119 mysql-5.1.41 http://www.openwall.com/lists/oss-security/2009/11/19/3 [oss-security] 20091121 CVE Request - MySQL - 5.0.88 http://marc.info/?l=oss-security&m=125881733826437&w=2 [oss-security] 20091123 Re: mysql-5.1.41 http://www.openwall.com/lists/oss-security/2009/11/23/16 http://bugs.mysql.com/47320 http://dev.mysql.com/doc/refman/5.0/en/news-5-0-88.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html oval:org.mitre.oval:def:10940 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10940 oval:org.mitre.oval:def:8510 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8510 Common Vulnerability Exposure (CVE) ID: CVE-2009-4030 38517 http://secunia.com/advisories/38517 38573 http://secunia.com/advisories/38573 APPLE-SA-2010-03-29-1 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html DSA-1997 http://www.debian.org/security/2010/dsa-1997 RHSA-2010:0110 http://www.redhat.com/support/errata/RHSA-2010-0110.html SUSE-SR:2010:021 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html USN-1397-1 http://www.ubuntu.com/usn/USN-1397-1 USN-897-1 http://ubuntu.com/usn/usn-897-1 [commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167 http://lists.mysql.com/commits/89940 [oss-security] 20091124 Re: mysql-5.1.41 http://marc.info/?l=oss-security&m=125908040022018&w=2 http://marc.info/?l=oss-security&m=125908080222685&w=2 http://www.openwall.com/lists/oss-security/2009/11/24/6 http://bugs.mysql.com/bug.php?id=32167 http://support.apple.com/kb/HT4077 oval:org.mitre.oval:def:11116 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116 oval:org.mitre.oval:def:8156 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.