MariaDB Server 5.5.x < 5.5.33 / 5.6.x < 5.6.13 SQL Injection

medium Nessus Network Monitor Plugin ID 9277

Synopsis

The remote database server is affected by multiple SQL Injection attack vectors.

Description

MariaDB is a community-developed fork of the MySQL relational database. The version of MariaDB installed on the remote host is 5.5.x earlier than 5.5.33, or 5.6.x earlier than 5.6.13, and is therefore affected by multiple SQL injection vulnerabilities. User-supplied identifiers are not properly quoted before being written into the binary log. An attacker with a valid account and privileges to modify data could exploit this to modify tables that they should not have access to.

Solution

Upgrade to version 5.6.13, or higher. If 5.6.x cannot be obtained, version 5.5.33 is also patched for these vulnerabilities.

See Also

http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-33.html

http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-13.html

https://mariadb.atlassian.net/browse/MDEV-382

http://www.openwall.com/lists/oss-security/2012/09/11/4

http://www.nessus.org/u?f8d7daf3

Plugin Details

Severity: Medium

ID: 9277

Family: Database

Published: 5/13/2016

Updated: 3/6/2019

Nessus ID: 64503

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS v3

Risk Factor: Medium

Base Score: 6.3

Temporal Score: 5.9

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:mariadb:mariadb

Patch Publication Date: 1/15/2013

Vulnerability Publication Date: 12/1/2012

Reference Information

CVE: CVE-2012-4414

BID: 55498