|
|
Family: Databases --> Category: infos
MySQL buffer overflow Vulnerability Scan
Vulnerability Scan Summary
Checks for the remote MySQL version
Detailed Explanation for this Vulnerability Test
You are running a version of MySQL which is older than 4.0.21.
MySQL is a database which runs on both Linux/BSD and Windows platform.
This version is vulnerable to a length overflow within it's
mysql_real_connect() function. The overflow is due to an error in the
processing of a return Domain (DNS) record. A possible hacker, exploiting
this flaw, would need to control a DNS server which would be queried
by the MySQL server. A successful attack would give the attacker
the ability to execute arbitrary code on the remote machine.
Threat Level: Medium
Solution : Upgrade to the latest version of MySQL 4.0.21 or newer
Click HERE for more information and discussions on this network vulnerability scan.
|
