Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.Install Now
Available for macOS, Windows, and Linux
Oracle Mysql 'my.conf' Security Bypass Vulnerability (Windows)
6 years ago
4 years ago
This host is running Oracle MySQL and is prone to security bypass vulnerability.
The flaw exists due to datadir is writable by the mysqld server, and a user that can connect to MySQL can create 'my.cnf' in the datadir using 'SELECT ... OUTFILE'.
Oracle MySQL Server before 5.5.52, 5.6.x before 5.6.33, and 5.7.x before 5.7.15 on windows.
Checks if a vulnerable version is present on the target host.
Upgrade to Oracle MySQL Server 5.5.52, or 5.6.33, or 5.7.15, or later.