Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:163: MySQL Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the MySQL package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:163 (MySQL).
A stack-based buffer overflow was discovered in the init_syms function in MySQL
that allows authenticated users that can create user-defined functions to
execute arbitrary code via a long function_name field.
The updated packages have been patched to address these issues.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:163
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.