vulnerability
FreeBSD: VID-DC596A17-7A9E-11E6-B034-F0DEF167EEEA: Remote-Code-Execution vulnerability in mysql and its variants CVE 2016-6662
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Sep 12, 2016 | Nov 24, 2016 | Feb 19, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Sep 12, 2016
Added
Nov 24, 2016
Modified
Feb 19, 2025
Description
LegalHackers' reports:
RCE Bugs discovered in MySQL and its variants like MariaDB.
It works by manipulating my.cnf files and using --malloc-lib.
The bug seems fixed in MySQL 5.7.15 by Oracle
Solutions
freebsd-upgrade-package-mysql55-clientfreebsd-upgrade-package-mysql55-serverfreebsd-upgrade-package-mysql56-clientfreebsd-upgrade-package-mysql56-serverfreebsd-upgrade-package-mysql57-clientfreebsd-upgrade-package-mysql57-server
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.