Detections
Analytics
FreeBSD : MySQL -- Information Disclosure and Buffer Overflow Vulnerabilities (4913886c-e875-11da-b9f4-00123ffe8333)
medium Nessus Plugin ID 21633
Synopsis
The remote FreeBSD host is missing one or more security-related updates.Description
Secunia reports :MySQL have some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information and compromise a vulnerable system.
1) An error within the code that generates an error response to an invalid COM_TABLE_DUMP packet can be exploited by an authenticated client to disclosure certain memory content of the server process.
2) A boundary error within the handling of specially crafted invalid COM_TABLE_DUMP packets can be exploited by an authenticated client to cause a buffer overflow and allows arbitrary code execution.
3) An error within the handling of malformed login packets can be exploited to disclosure certain memory content of the server process in the error messages.
Solution
Update the affected packages.See Also
http://www.wisec.it/vulns.php?page=7
http://www.wisec.it/vulns.php?page=8
https://dev.mysql.com/doc/refman/4.1/en/news-4-0-27.html
https://dev.mysql.com/doc/refman/4.1/en/news-4-1-19.html
https://dev.mysql.com/doc/refman/5.1/en/news-5-1-10.html
http://www.vuxml.org/freebsd/a8d8713e-dc83-11da-a22b-000c6ec775d9.html
Plugin Details
Severity: Medium
ID: 21633
File Name: freebsd_pkg_4913886ce87511dab9f400123ffe8333.nasl
Version: 1.15
Type: local
Family: FreeBSD Local Security Checks
Published: 6/5/2006
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.3
CVSS v2
Risk Factor: Medium
Base Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P
Vulnerability Information
CPE: p-cpe:/a:freebsd:freebsd:mysql-server, cpe:/o:freebsd:freebsd
Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info
Patch Publication Date: 6/1/2006
Vulnerability Publication Date: 5/2/2006