You are here

U-099: MySQL Unspecified Code Execution Vulnerability

February 9, 2012 - 7:00am

Addthis

PROBLEM:

A vulnerability has been reported in MySQL, which can be exploited by malicious people to compromise a vulnerable system.

PLATFORM:

MySQL 5.x

ABSTRACT:

Successful exploitation allows execution of arbitrary code.

ReferenceĀ  LINKS:

Secunia Advisory SA47894
No CVE references currently available.

IMPACT ASSESSMENT:

Medium

Discussion:

The vulnerability is reported in version 5.5.20. Other versions may also be affected. The exploit has been tested with mysql-5.5.20-debian6.0-i686.deb on Debian 6.0.

Impact:

System access from local network

Solution:

An effective workaround cannot currently be provided due to limited vulnerability details.

Addthis