Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2013 Greenbone AGOPENVAS:1361412562310803723
HistoryJul 29, 2013 - 12:00 a.m.

MySQL Unspecified vulnerabilities-01 (Jul 2013) - Windows

2013-07-2900:00:00
Copyright (C) 2013 Greenbone AG
plugins.openvas.org
13

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

5.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.3%

JSON

MySQL is prone to multiple unspecified vulnerabilities.

# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:mysql:mysql";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.803723");
  script_version("2024-02-20T14:37:13+0000");
  script_cve_id("CVE-2013-3804", "CVE-2013-3802");
  script_tag(name:"cvss_base", value:"4.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:N/I:N/A:P");
  script_tag(name:"last_modification", value:"2024-02-20 14:37:13 +0000 (Tue, 20 Feb 2024)");
  script_tag(name:"creation_date", value:"2013-07-29 16:31:04 +0530 (Mon, 29 Jul 2013)");
  script_name("MySQL Unspecified vulnerabilities-01 (Jul 2013) - Windows");

  script_tag(name:"summary", value:"MySQL is prone to multiple unspecified vulnerabilities.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"solution", value:"Apply the patch from the referenced advisory.");

  script_tag(name:"insight", value:"Unspecified errors in the MySQL Server component via unknown vectors related
  to Full Text Search and Server Optimizer.");

  script_tag(name:"affected", value:"Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, 5.6.11 and earlier on Windows.");

  script_tag(name:"impact", value:"Successful exploitation will allow remote authenticated users to affect
  availability via unknown vectors.");

  script_xref(name:"URL", value:"http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/61244");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/61260");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2013 Greenbone AG");
  script_family("Databases");
  script_tag(name:"qod_type", value:"remote_banner");
  script_tag(name:"solution_type", value:"VendorFix");
  script_dependencies("mysql_version.nasl", "os_detection.nasl");
  script_mandatory_keys("MySQL/installed", "Host/runs_windows");

  exit(0);
}

include("version_func.inc");
include("host_details.inc");

if(!sqlPort = get_app_port(cpe:CPE)) exit(0);
mysqlVer = get_app_version(cpe:CPE, port:sqlPort);

if(mysqlVer && mysqlVer =~ "^5\.[156]")
{
  if(version_in_range(version:mysqlVer, test_version:"5.1", test_version2:"5.1.69") ||
     version_in_range(version:mysqlVer, test_version:"5.5", test_version2:"5.5.31") ||
     version_in_range(version:mysqlVer, test_version:"5.6", test_version2:"5.6.11"))
  {
    security_message(sqlPort);
    exit(0);
  }
}

Related

openvas 9
nessus 11
cve 2
prion 2
cvelist 2
veracode 2
ubuntucve 2
nvd 2
mariadbunix 2
ubuntu 1
debian 2
suse 2
oracle 1
securityvulns 1
gentoo 1
openvas
openvas
MySQL Unspecified vulnerabilities-01 (Jul 2013) - Linux
2017-11-22 00:00:00
Ubuntu Update for mysql-5.5 USN-1909-1
2013-08-08 00:00:00
Ubuntu: Security Advisory (USN-1909-1)
2013-08-08 00:00:00
nessus
nessus
MySQL 5.1 < 5.1.70 Multiple Vulnerabilities
2013-07-17 00:00:00
MariaDB 5.5 < 5.5.32 Multiple Vulnerabilities
2014-02-06 00:00:00
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : mysql-5.5, mysql-dfsg-5.1 vulnerabilities (USN-1909-1)
2013-07-26 00:00:00
cve
cve
CVE-2013-3804
2013-07-17 13:41:16
CVE-2013-3802
2013-07-17 13:41:16
prion
prion
Design/Logic Flaw
2013-07-17 13:41:00
Design/Logic Flaw
2013-07-17 13:41:00
cvelist
cvelist
CVE-2013-3802
2013-07-17 10:00:00
CVE-2013-3804
2013-07-17 10:00:00
veracode
veracode
Authentication Bypass
2019-05-02 04:45:28
Authentication Bypass
2019-05-02 04:45:28
ubuntucve
ubuntucve
CVE-2013-3802
2013-07-17 00:00:00
CVE-2013-3804
2013-07-17 00:00:00
nvd
nvd
CVE-2013-3802
2013-07-17 13:41:16
CVE-2013-3804
2013-07-17 13:41:16
mariadbunix
mariadbunix
CVE-2013-3804
2013-07-17 13:41:00
CVE-2013-3802
2013-07-17 13:41:00
ubuntu
ubuntu
MySQL vulnerabilities
2013-07-25 00:00:00
debian
debian
[SECURITY] [DSA 2818-1] mysql-5.5 security update
2013-12-16 15:57:29
[SECURITY] [DSA 2818-1] mysql-5.5 security update
2013-12-16 15:57:29
suse
suse
Security update for MySQL (important)
2013-08-30 00:04:13
Security update for mysql, mysql-client (important)
2013-10-07 22:04:14
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00
securityvulns
securityvulns
Oracle / Sun / MySQL / PeopleSoft applications multiple security vulnerabilities
2013-08-12 00:00:00
gentoo
gentoo
MySQL: Multiple vulnerabilities
2013-08-29 00:00:00

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

5.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.3%

JSON
Related for OPENVAS:1361412562310803723
openvas9nessus11cve2prion2cvelist2veracode2ubuntucve2nvd2mariadbunix2ubuntu1debian2suse2oracle1securityvulns1gentoo1