Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA1169] DSA-1169-1 mysql-dfsg-4.1


Vulnerability Assessment Details

[DSA1169] DSA-1169-1 mysql-dfsg-4.1

Vulnerability Assessment Summary
DSA-1169-1 mysql-dfsg-4.1

Detailed Explanation for this Vulnerability Assessment

Several local vulnerabilities have been discovered in the MySQL
database server. The Common Vulnerabilities and Exposures project
identifies the following problems:
Michal Prokopiuk discovered that remote authenticated users are
permitted to create and access a database if the lowercase
spelling is the same as one they have been granted access to.
Beat Vontobel discovered that certain queries replicated to a
slave could crash the client and thus terminate the replication.
For the stable distribution (sarge) these problems have been fixed in
version 4.1.11a-4sarge7. Version 4.0 is not affected by these
problems.
For the unstable distribution (sid) these problems have been fixed in
version 5.0.24-3. The replication problem only exists in version 4.1.
We recommend that you upgrade your mysql-server-4.1 package.


Solution : http://www.debian.org/security/2006/dsa-1169
Network Security Threat Level: High

Networks Security ID: 19559

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors

Cisco AIR-BR1410A-A-K9-N Aironet Wireless Bridge
$60.0
Cisco AIR-BR1410A-A-K9-N Aironet Wireless Bridge  pictureCP-7961G
$27.99
CP-7961G pictureNEW Cisco SG300-10SFP-K9-NA SG300-10SFP Layer 3 Switch SG300 10 Port Gigabit SFP
$368.98
NEW Cisco SG300-10SFP-K9-NA SG300-10SFP Layer 3 Switch SG300 10 Port Gigabit SFP picture


Discussions

No Discussions have been posted on this vulnerability.