Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2006:064: MySQL


Vulnerability Assessment Details

MDKSA-2006:064: MySQL

Vulnerability Assessment Summary
Check for the version of the MySQL package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2006:064 (MySQL).



MySQL permits local users to bypass logging mechanisms via SQL queries that
contain the NULL character, which are not properly handled by the
mysql_real_query function. Updated packages have been patched to correct this
issue.



Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:064
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors

HP PROLIANT DL320e Gen8 1U SERVER XEON E3-1230 V2 3.3GHz QC 16GB P222 B120i RAID
$149.99
HP PROLIANT DL320e Gen8 1U SERVER XEON E3-1230 V2 3.3GHz QC 16GB P222 B120i RAID pictureDell/LSI Perc H200 8-Port SATA SAS 6Gb/s Raid Controller Card 47MCV/9211-8i
$29.95
Dell/LSI Perc H200 8-Port SATA SAS 6Gb/s Raid Controller Card 47MCV/9211-8i picturePromise Technology FastTrak66 Ultra ATA/66 IDE PCI RAID Card ; UNT 624685
$15.5
Promise Technology FastTrak66 Ultra ATA/66 IDE PCI RAID Card ; UNT 624685 pictureDell HV52W H310 SATA / SAS HBA Controller RAID 6Gbps PCIe x8 LSI 9240-8i M1015
$29.95
Dell HV52W H310 SATA / SAS HBA Controller RAID 6Gbps PCIe x8 LSI 9240-8i M1015 picture


Discussions

No Discussions have been posted on this vulnerability.