PT-2017-1960 · Oracle+4 · Mysql Server+3
Publicado
2017-04-18
·
Atualizado
2019-10-03
·
CVE-2017-3463
CVSS v3.1
4.9
Média
| Vetor | AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
MySQL Server versions 5.5.54 and earlier
MySQL Server versions 5.6.35 and earlier
MySQL Server versions 5.7.17 and earlier
Description
The issue is related to insufficient access control in the MySQL Server component of Oracle MySQL, allowing a remote attacker to gain privileged access and cause the system to hang or crash using network packets. This can result in a denial of service (DOS) of the MySQL Server.
Recommendations
For versions 5.5.54 and earlier, update to a version later than 5.5.54 to resolve the issue.
For versions 5.6.35 and earlier, update to a version later than 5.6.35 to resolve the issue.
For versions 5.7.17 and earlier, update to a version later than 5.7.17 to resolve the issue.
Exploit
Correção
Improper Access Control
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Alt Linux
Mysql Server
Suse
Ubuntu