|
|
Open Ports Found: 2 (High:2 Low:0)
| Port No | Protocol | Service | Details | ||
|---|---|---|---|---|---|
| 1433 | tcp | ms-sql-s | No banner found | ||
| 1434 | udp | mssql | Response Received |
| Warning: You have high-risk (red) ports exposed to the internet. These may not represent a direct vulnerability but it is not common practice to expose these services. Consider restricting access to these ports. This will help to protect you against potential future vulnerabilities. |
Vulnerabilities Found: 4 (High:2 Medium:1 Low:1)
| Vulnerability | 11299 | MySQL < 3.23.55 Double Free | High Risk |
|---|
| Description | According to its banner, the MySQL service on this host is vulnerable to a double free bug. This allows a remote attacker with a valid login to crash the server, and may allow them to execute arbitrary commands as the owner of the process. | ||||
|---|---|---|---|---|---|
| Solution | Upgrade to 3.23.55 or newer, or apply a patch | ||||
| References | CAN-2003-0150 CVE-2003-0073 | ||||
| First Found | 11 November 0002 | Port | 1434/udp | Last 6 Months |
|
| Vulnerability | 11378 | MySQL < 3.23.56 Privilege Escalation | High Risk |
|---|
| Description | According to its banner, this MySQL server is running a version older than 3.23.56. This allows any database user (local or remote) to overwrite arbitrary files using "SELECT INTO OUTFILE". This can be used to overwrite configuration files and hence escalate privileges. | ||||
|---|---|---|---|---|---|
| Solution | Upgrade to an unaffected version, or apply a patch. | ||||
| References | CAN-2003-0150 | ||||
| First Found | 11 December 0002 | Port | 1434/udp | Last 6 Months |
|
| Vulnerability | 11842 | MySQL < 3.23.58, 4.0.15 Password Overflow | Medium Risk |
|---|
| Description | You are running a version of MySQL which is older than version 4.0.15. This contains a buffer overflow flaw in the password handling code. Any user who has credentials to connect to this server can change their password to a carefully crafted overly long value, and execute arbitrary code with the priviliges of the database user. | ||||
|---|---|---|---|---|---|
| Solution | Upgrade to MySQL 3.23.58 or 4.0.15 | ||||
| References | CAN-2003-0780 | ||||
| First Found | 11 February 2003 | Port | 1434/udp | Last 6 Months |
|
| Vulnerability | 10719 | MySQL Server version | Low Risk |
|---|
| Description | The remote MySQL service reveals its version number. This information may help an attacker choose an effective strategy. Versions should be omitted where possible. | ||||
|---|---|---|---|---|---|
| Solution | Change the version number to something generic | ||||
| First Found | 11 February 2003 | Port | 1434/tcp | Last 6 Months |
|
Historical Information
