|
|
Open Ports Found: 3 (High:3 Low:0)
| Port No | Protocol | Service | Details | ||
|---|---|---|---|---|---|
| 1433 | tcp | ms-sql-s | No banner found | ||
| 3306 | tcp | mysql | Response Received | ||
| 1434 | udp | mssql | Response Received |
| Warning: You have high-risk (red) ports exposed to the internet. These may not represent a direct vulnerability but it is not common practice to expose these services. Consider restricting access to these ports. This will help to protect you against potential future vulnerabilities. |
Vulnerabilities Found: 4 (High:2 Medium:1 Low:1)
| Vulnerability | 10481 | Unpassworded MySQL | High Risk |
|---|
| Description | The MySQL server has no password allowing remote users to execute arbitrary SQL as the databases admin user. | ||||
|---|---|---|---|---|---|
| Solution | Add a password or restrict access to the port trusted hosts. | ||||
| First Found | 13 April 2003 | Port | 3306/tcp | Last 6 Months |
|
| Vulnerability | 11378 | MySQL < 3.23.56 Privilege Escalation | High Risk |
|---|
| Description | According to its banner, this MySQL server is running a version older than 3.23.56. This allows any database user (local or remote) to overwrite arbitrary files using "SELECT INTO OUTFILE". This can be used to overwrite configuration files and hence escalate privileges. | ||||
|---|---|---|---|---|---|
| Solution | Upgrade to an unaffected version, or apply a patch. | ||||
| References | CAN-2003-0150 | ||||
| First Found | 13 March 2002 | Port | 3306/tcp | Last 6 Months |
|
| Vulnerability | 11842 | MySQL < 3.23.58, 4.0.15 Password Overflow | Medium Risk |
|---|
| Description | You are running a version of MySQL which is older than version 4.0.15. This contains a buffer overflow flaw in the password handling code. Any user who has credentials to connect to this server can change their password to a carefully crafted overly long value, and execute arbitrary code with the priviliges of the database user. | ||||
|---|---|---|---|---|---|
| Solution | Upgrade to MySQL 3.23.58 or 4.0.15 | ||||
| References | CAN-2003-0780 | ||||
| First Found | 13 March 2002 | Port | 3306/tcp | Last 6 Months |
|
| Vulnerability | 10719 | MySQL Server version | Low Risk |
|---|
| Description | The remote MySQL service reveals its version number. This information may help an attacker choose an effective strategy. Versions should be omitted where possible. | ||||
|---|---|---|---|---|---|
| Solution | Change the version number to something generic | ||||
| First Found | 13 March 2002 | Port | 3306/tcp | Last 6 Months |
|
Historical Information
