oval:org.mitre.oval:def:8510

Definition Id: oval:org.mitre.oval:def:8510
 
Oval ID: oval:org.mitre.oval:def:8510
Title: MySQL 5.0 and 5.1 Clients with OpenSSL Vulnerability Allows Bypassing Server Certificate Checking
Description: The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificate, as demonstrated by a certificate presented by a server linked against the yaSSL library.
Family: windows Class: vulnerability
Reference(s): CVE-2009-4028
Version: 3
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Server 2008
Product(s): MySQL Server 5.0
MySQL Server 5.1
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:8282
 
Oval ID: oval:org.mitre.oval:def:8282
Title: MySQL 5.0 is installed
Description: MySQL Server 5.0 is installed
Family: windows Class: inventory
Reference(s): cpe:/a:mysql:mysql:5.0
Version: 9
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Product(s): MySQL Server 5.0
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:8510
Definition Id: oval:org.mitre.oval:def:8297
 
Oval ID: oval:org.mitre.oval:def:8297
Title: MySQL 5.1 is installed
Description: MySQL Server 5.1 is installed
Family: windows Class: inventory
Reference(s): cpe:/a:mysql:mysql:5.1
Version: 9
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Product(s): MySQL Server 5.1
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:8510