CVE-2014-0001

HIGH

Description

Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.

References

http://bazaar.launchpad.net/~maria-captains/maria/5.5/revision/2502.565.64

http://osvdb.org/102713

http://rhn.redhat.com/errata/RHSA-2014-0164.html

http://rhn.redhat.com/errata/RHSA-2014-0173.html

http://rhn.redhat.com/errata/RHSA-2014-0186.html

http://rhn.redhat.com/errata/RHSA-2014-0189.html

http://secunia.com/advisories/52161

http://security.gentoo.org/glsa/glsa-201409-04.xml

http://www.mandriva.com/security/advisories?name=MDVSA-2014:029

http://www.osvdb.org/102714

http://www.securityfocus.com/bid/65298

http://www.securitytracker.com/id/1029708

https://bugzilla.redhat.com/show_bug.cgi?id=1054592

https://exchange.xforce.ibmcloud.com/vulnerabilities/90901

https://mariadb.com/kb/en/mariadb-5535-changelog/

Details

Source: MITRE

Published: 2014-01-31

Updated: 2019-04-22

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:* versions up to 5.5.34 (inclusive)

Configuration 2

OR

cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:5:*:server:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:a:mysql:mysql:5.5.0:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.1:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.2:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.3:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.4:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.5:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.6:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.7:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.8:*:*:*:*:*:*:*

cpe:2.3:a:mysql:mysql:5.5.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.10:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.11:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.12:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.13:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.14:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.15:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.16:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.17:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.18:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.19:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.20:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.21:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.22:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.23:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.24:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.25:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.25:a:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.26:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.27:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.28:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.29:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.30:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.31:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.32:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.33:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.34:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.35:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.36:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.15:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.16:*:*:*:*:*:*:*

Tenable Plugins

View all (25 total)

ID	Name	Product	Family	Severity
125007	EulerOS Virtualization 3.0.1.0 : mariadb (EulerOS-SA-2019-1554)	Nessus	Huawei Local Security Checks	high
96790	OracleVM 3.3 / 3.4 : mysql (OVMSA-2017-0035)	Nessus	OracleVM Local Security Checks	critical
9283	MariaDB Server 10.0.x < 10.0.21 Multiple Vulnerabilities	Nessus Network Monitor	Database	medium
82220	Debian DLA-75-1 : mysql-5.1 security update	Nessus	Debian Local Security Checks	high
77548	GLSA-201409-04 : MySQL: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
74373	SuSE 11.3 Security Update : MySQL (SAT Patch Number 9303)	Nessus	SuSE Local Security Checks	critical
73855	Debian DSA-2919-1 : mysql-5.5 - security update	Nessus	Debian Local Security Checks	high
73680	Ubuntu 12.04 LTS / 12.10 / 13.10 / 14.04 LTS : mysql-5.5 vulnerabilities (USN-2170-1)	Nessus	Ubuntu Local Security Checks	high
8212	Oracle MySQL 5.5.x <= 5.5.36 / 5.6.x <= 5.6.16 Multiple Vulnerabilities	Nessus Network Monitor	Database	medium
73572	MySQL 5.5.x < 5.5.36 Multiple Vulnerabilities	Nessus	Databases	high
72946	Amazon Linux AMI : mysql51 (ALAS-2014-298)	Nessus	Amazon Linux Local Security Checks	high
72864	CentOS 6 : mariadb55-mariadb (CESA-2014:0189)	Nessus	CentOS Local Security Checks	high
72863	CentOS 6 : mysql55-mysql (CESA-2014:0173)	Nessus	CentOS Local Security Checks	high
72592	CentOS 5 : mysql55-mysql (CESA-2014:0186)	Nessus	CentOS Local Security Checks	high
72590	Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : mariadb, mysql (SSA:2014-050-02)	Nessus	Slackware Local Security Checks	high
8129	MariaDB Server 5.5.x < 5.5.35 Buffer Overflow Vulnerability	Nessus Network Monitor	Database	high
72569	Scientific Linux Security Update : mysql55-mysql on SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
72568	RHEL 5 : mysql55-mysql (RHSA-2014:0186)	Nessus	Red Hat Local Security Checks	high
72566	Oracle Linux 5 : mysql55-mysql (ELSA-2014-0186)	Nessus	Oracle Linux Local Security Checks	high
72495	Mandriva Linux Security Advisory : mariadb (MDVSA-2014:028)	Nessus	Mandriva Local Security Checks	high
72491	CentOS 6 : mysql (CESA-2014:0164)	Nessus	CentOS Local Security Checks	high
72477	Scientific Linux Security Update : mysql on SL6.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
72474	RHEL 6 : mysql (RHSA-2014:0164)	Nessus	Red Hat Local Security Checks	high
72471	Oracle Linux 6 : mysql (ELSA-2014-0164)	Nessus	Oracle Linux Local Security Checks	high
72374	MariaDB 5.5 < 5.5.35 Multiple Vulnerabilities	Nessus	Databases	high