Mysql Server · Mysql Connector/Net · CVE-2009-4833
**Name of the Vulnerable Software and Affected Versions**
MySQL Connector/NET versions prior to 6.0.4
**Description**
The issue allows remote attackers to perform a man-in-the-middle attack with a spoofed SSL certificate because it does not verify SSL certificates during connection when using encryption.
**Recommendations**
For versions prior to 6.0.4, update to version 6.0.4 or later to resolve the issue.