An independent researcher has discovered multiple severe vulnerabilities affecting open source database software MySQL and its forks (e.g. MariaDB, Percona).
One of these – CVE-2016-6662 – can be exploited by attackers to inject malicious settings into MySQL configuration files or create new ones, allowing them to execute arbitrary code with root privileges when the MySQL service is restarted. This could lead to total compromise of the server running the vulnerable MySQL version.
MariaDB has filed this issue: https://jira.mariadb.org/browse/MDEV-10465. KACE Support is tracking the issue as K1-18905.
Vous devez être connecté et disposer d'un contrat de maintenance en cours pour afficher les articles de la base de connaissances avancés.
© ALL RIGHTS RESERVED. Feedback Conditions d’utilisation Confidentialité Cookie Preference Center