This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote database server is affected by multiple vulnerabilities.
The version of MariaDB 5.5 installed on the remote host is a version
prior to 5.5.35. It is, therefore, potentially affected by the
following vulnerabilities :
- Errors exist related to the following subcomponents :
Error Handling, FTS, GIS, InnoDB, Locking, Optimizer,
Partition, Performance Schema, Privileges, Replication,
and Thread Pooling. (CVE-2013-5860, CVE-2013-5881,
CVE-2013-5891, CVE-2013-5894, CVE-2013-5908,
CVE-2014-0386, CVE-2014-0393, CVE-2014-0401,
CVE-2014-0402, CVE-2014-0412, CVE-2014-0420,
CVE-2014-0427, CVE-2014-0430, CVE-2014-0431,
- An unspecified error exists related to stored
procedures handling that could allow denial of service
- An error exists in the file 'client/mysql.cc' that
could allow a buffer overflow leading to denial of
service or possibly arbitrary code execution.
See also :
Upgrade to MariaDB 5.5.35 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false
Nessus Plugin ID: 72374 ()
Bugtraq ID: 64849648546486464868648736487764880648856488864891648936489564896648976489864904649086529865312
CVE ID: CVE-2013-5860CVE-2013-5881CVE-2013-5882CVE-2013-5891CVE-2013-5894CVE-2013-5908CVE-2014-0001CVE-2014-0386CVE-2014-0393CVE-2014-0401CVE-2014-0402CVE-2014-0412CVE-2014-0420CVE-2014-0427CVE-2014-0430CVE-2014-0431CVE-2014-0433CVE-2014-0437
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.