This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:mysql:mysql:5.1.3
Detail
VendorMysqlFirst view 2006-07-10
ProductMysqlLast view2015-04-16
Version5.1.3TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:mysql:mysql

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.92015-04-16CVE-2015-2575NetworkMediumRequires ...
3.52014-01-15CVE-2014-0437NetworkMediumRequires ...
42014-01-15CVE-2014-0412NetworkLowRequires ...
42014-01-15CVE-2014-0402NetworkLowRequires ...
42014-01-15CVE-2014-0401NetworkLowRequires ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.32014-01-15CVE-2014-0393NetworkLowRequires ...
42014-01-15CVE-2014-0386NetworkLowRequires ...
2.62014-01-15CVE-2013-5908NetworkHighNone Requ...
42013-07-17CVE-2013-3808NetworkLowRequires ...
42013-07-17CVE-2013-3804NetworkLowRequires ...
42013-07-17CVE-2013-3802NetworkLowRequires ...
42013-04-17CVE-2013-2392NetworkLowRequires ...
32013-04-17CVE-2013-2391LocalMediumRequires ...
42013-04-17CVE-2013-2389NetworkLowRequires ...
62013-04-17CVE-2013-2378NetworkMediumRequires ...
42013-04-17CVE-2013-1555NetworkLowRequires ...
62013-04-17CVE-2013-1552NetworkMediumRequires ...
3.52013-04-17CVE-2013-1548NetworkMediumRequires ...
6.52013-04-17CVE-2013-1521NetworkLowRequires ...
2.82013-04-17CVE-2013-1506NetworkMediumRequires ...
7.52013-03-28CVE-2013-1492NetworkLowNone Requ...
7.52013-03-28CVE-2012-0553NetworkLowNone Requ...
6.82013-01-16CVE-2013-0389NetworkLowRequires ...
6.62013-01-16CVE-2013-0385LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
25% (7)CWE-399Resource Management Errors
21% (6)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
10% (3)CWE-264Permissions, Privileges, and Access Controls
10% (3)CWE-59Improper Link Resolution Before File Access ('Link Following')
10% (3)CWE-20Improper Input Validation
Hide | Show 4 More...
%idName
7% (2)CWE-189Numeric Errors
7% (2)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
3% (1)CWE-134Uncontrolled Format String
3% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:21317RHSA-2012:0105: mysql security update (Important)
oval:org.mitre.oval:def:23683ELSA-2012:0105: mysql security update (Important)
oval:org.mitre.oval:def:16267Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se...
oval:org.mitre.oval:def:20971RHSA-2013:0772: mysql security update (Important)
oval:org.mitre.oval:def:18467DSA-2667-1 mysql-5.5 - several
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:18379USN-1807-2 -- mysql-5.5 vulnerabilities
oval:org.mitre.oval:def:17129USN-1807-1 -- MySQL vulnerabilities
oval:org.mitre.oval:def:11720sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows rem...
oval:org.mitre.oval:def:8156MySQL 5.1 Privilege Bypass with DATA/INDEX DIRECTORY
oval:org.mitre.oval:def:21419RHSA-2010:0109: mysql security update (Moderate)
oval:org.mitre.oval:def:11116MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege chec...
oval:org.mitre.oval:def:22758ELSA-2010:0109: mysql security update (Moderate)
oval:org.mitre.oval:def:28260DEPRECATED: ELSA-2010-0109 -- mysql security update (moderate)
oval:org.mitre.oval:def:17266Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se...
oval:org.mitre.oval:def:7544MySQL 6.0 and 5.1 XPath Expression DOS Vulnerability
oval:org.mitre.oval:def:20366DSA-1413-1 mysql - multiple
oval:org.mitre.oval:def:11390The convert_search_mode_to_innobase function in ha_innodb.cc in the InnoDB en...
oval:org.mitre.oval:def:21851ELSA-2007:1155: mysql security update (Important)
oval:org.mitre.oval:def:21643RHSA-2012:1462: mysql security update (Important)
oval:org.mitre.oval:def:17999USN-1621-1 -- mysql-5.1, mysql-5.5, mysql-dfsg-5.1 vulnerabilities
oval:org.mitre.oval:def:23931ELSA-2012:1462: mysql security update (Important)
oval:org.mitre.oval:def:27464DEPRECATED: ELSA-2012-1462 -- mysql security update (important)
oval:org.mitre.oval:def:17268Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se...
oval:org.mitre.oval:def:22337RHSA-2010:0825: mysql security update (Moderate)
oval:org.mitre.oval:def:21911RHSA-2011:0164: mysql security update (Moderate)

SAINT Exploits

DescriptionLink
MySQL yaSSL SSL Hello message buffer overflowMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
78393Oracle MySQL Server Unspecified Remote DoS (2012-0492)
78391Oracle MySQL Server Unspecified Remote DoS (2012-0112)
78388Oracle MySQL Server Unspecified Remote DoS (2012-0490)
78383Oracle MySQL Server Unspecified Remote DoS (2012-0485)
78382Oracle MySQL Server Unspecified Remote DoS (2012-0120)
Hide | Show 20 More...
idDescription
78381Oracle MySQL Server Unspecified Remote DoS (2012-0119)
78380Oracle MySQL Server Unspecified Remote DoS (2012-0115)
78379Oracle MySQL Server Unspecified Remote DoS (2012-0102)
78378Oracle MySQL Server Unspecified Remote DoS (2012-0101)
78377Oracle MySQL Server Unspecified Remote DoS (2012-0087)
78376Oracle MySQL Server Unspecified Remote DoS (2011-2262)
78374Oracle MySQL Server Unspecified Remote Issue (2012-0075)
78373Oracle MySQL Server Unspecified Local Issue
78372Oracle MySQL Server Unspecified Remote Information Disclosure
78370Oracle MySQL Server Unspecified Remote Issue (2012-0118)
78369Oracle MySQL Server Unspecified Remote Issue (2012-0116)
78368Oracle MySQL Server Unspecified Remote Issue (2012-0113)
69395MySQL Derived Table Grouping DoS
69394MySQL Temporary Table Expression Re-Evaluation DoS
69393MySQL GROUP_CONCAT() WITH ROLLUP Modifier DoS
69392MySQL Extreme-Value Functions Mixed Arguments DoS
69391MySQL Stored Procedures / Prepared Statements Nested Joins DoS
69390MySQL Extreme-Value Functions Argument Parsing Type Error DoS
69387MySQL LIKE Predicates Pre-Evaluation DoS
69001MySQL PolyFromWKB() Function WKB Data Remote DoS

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2581-1 (mysql-5.1 - several vulnerabilities)
File : nvt/deb_2581_1.nasl
2012-11-26Name : Oracle MySQL Server Multiple Vulnerabilities-01 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln01_nov12_win.nasl
2012-11-26Name : Oracle MySQL Server Multiple Vulnerabilities-02 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln02_nov12_win.nasl
2012-11-26Name : Oracle MySQL Server Multiple Vulnerabilities-03 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln03_nov12_win.nasl
2012-11-15Name : RedHat Update for mysql RHSA-2012:1462-01
File : nvt/gb_RHSA-2012_1462-01_mysql.nasl
Hide | Show 20 More...
idDescription
2012-11-15Name : CentOS Update for mysql CESA-2012:1462 centos6
File : nvt/gb_CESA-2012_1462_mysql_centos6.nasl
2012-11-06Name : Ubuntu Update for mysql-5.5 USN-1621-1
File : nvt/gb_ubuntu_USN_1621_1.nasl
2012-08-10Name : Debian Security Advisory DSA 2496-1 (mysql-5.1)
File : nvt/deb_2496_1.nasl
2012-07-30Name : CentOS Update for mysql CESA-2012:0874 centos6
File : nvt/gb_CESA-2012_0874_mysql_centos6.nasl
2012-07-30Name : CentOS Update for mysql CESA-2012:0105 centos6
File : nvt/gb_CESA-2012_0105_mysql_centos6.nasl
2012-07-30Name : CentOS Update for mysql CESA-2012:0127 centos5
File : nvt/gb_CESA-2012_0127_mysql_centos5.nasl
2012-07-09Name : RedHat Update for mysql RHSA-2012:0105-01
File : nvt/gb_RHSA-2012_0105-01_mysql.nasl
2012-06-22Name : RedHat Update for mysql RHSA-2012:0874-04
File : nvt/gb_RHSA-2012_0874-04_mysql.nasl
2012-06-05Name : RedHat Update for mysql RHSA-2011:0164-01
File : nvt/gb_RHSA-2011_0164-01_mysql.nasl
2012-04-30Name : Debian Security Advisory DSA 2429-1 (mysql-5.1)
File : nvt/deb_2429_1.nasl
2012-04-02Name : Fedora Update for mysql FEDORA-2012-0972
File : nvt/gb_fedora_2012_0972_mysql_fc16.nasl
2012-03-16Name : Ubuntu Update for mysql-5.1 USN-1397-1
File : nvt/gb_ubuntu_USN_1397_1.nasl
2012-02-21Name : RedHat Update for mysql RHSA-2012:0127-01
File : nvt/gb_RHSA-2012_0127-01_mysql.nasl
2012-02-13Name : Fedora Update for mysql FEDORA-2012-0987
File : nvt/gb_fedora_2012_0987_mysql_fc15.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201201-02 (MySQL)
File : nvt/glsa_201201_02.nasl
2011-09-07Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007)
File : nvt/gb_macosx_su10-007.nasl
2011-08-19Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2011-004)
File : nvt/secpod_macosx_su11-004.nasl
2011-08-09Name : CentOS Update for mysql CESA-2010:0109 centos5 i386
File : nvt/gb_CESA-2010_0109_mysql_centos5_i386.nasl
2011-08-09Name : CentOS Update for mysql CESA-2010:0442 centos5 i386
File : nvt/gb_CESA-2010_0442_mysql_centos5_i386.nasl
2011-08-09Name : CentOS Update for mysql CESA-2009:1289 centos5 i386
File : nvt/gb_CESA-2009_1289_mysql_centos5_i386.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-A-0011Multiple Vulnerabilities in Oracle MySQL Products
Severity : Category I - VMSKEY : V0043399

Snort® IPS/IDS

DateDescription
2020-01-07yaSSL SSL Hello Message buffer overflow attempt
RuleID : 52366 - Type : SERVER-MYSQL - Revision : 1
2014-01-10Database SELECT subquery denial of service attempt
RuleID : 20053 - Type : SERVER-MYSQL - Revision : 7
2014-01-10Database unique set column denial of service attempt
RuleID : 19094 - Type : SERVER-MYSQL - Revision : 12
2014-01-10Database unique set column denial of service attempt
RuleID : 19093 - Type : SERVER-MYSQL - Revision : 12
2014-01-10IN NULL argument denial of service attempt
RuleID : 19001 - Type : SERVER-MYSQL - Revision : 8
Hide | Show 12 More...
DateDescription
2014-01-10Database CASE NULL argument denial of service attempt
RuleID : 19000 - Type : SERVER-MYSQL - Revision : 9
2014-01-10yaSSL SSL Hello Message Buffer Overflow attempt
RuleID : 18513 - Type : SERVER-MYSQL - Revision : 13
2014-01-10Database COM_FIELD_LIST Buffer Overflow attempt
RuleID : 16703 - Type : SERVER-MYSQL - Revision : 10
2014-01-10database Procedure Analyse denial of service attempt - 2
RuleID : 16349 - Type : SERVER-MYSQL - Revision : 7
2014-01-10database PROCEDURE ANALYSE denial of service attempt - 1
RuleID : 16348 - Type : SERVER-MYSQL - Revision : 7
2014-01-10XML Functions UpdateXML Scalar XPath denial of service attempt
RuleID : 15443 - Type : SERVER-MYSQL - Revision : 10
2014-01-10XML Functions ExtractValue Scalar XPath denial of service attempt
RuleID : 15442 - Type : SERVER-MYSQL - Revision : 7
2014-01-10yaSSL SSLv3 Client Hello Message Cipher Specs Buffer Overflow attempt
RuleID : 13714 - Type : SERVER-MYSQL - Revision : 16
2014-01-10yaSSL SSLv2 Client Hello Message Challenge Buffer Overflow attempt
RuleID : 13713 - Type : MYSQL - Revision : 9
2014-01-10yaSSL SSLv2 Client Hello Message Session ID Buffer Overflow attempt
RuleID : 13712 - Type : MYSQL - Revision : 9
2014-01-10yaSSL SSLv2 Client Hello Message Cipher Length Buffer Overflow attempt
RuleID : 13711 - Type : MYSQL - Revision : 9
2014-01-10yaSSL SSL Hello Message Buffer Overflow attempt
RuleID : 13593 - Type : MYSQL - Revision : 7

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2017-01-26Name : The remote OracleVM host is missing a security update.
File : oraclevm_OVMSA-2017-0035.nasl - Type : ACT_GATHER_INFO
2016-09-15Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-1082.nasl - Type : ACT_GATHER_INFO
2016-07-19Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3621.nasl - Type : ACT_GATHER_INFO
2016-06-27Name : The remote Debian host is missing a security update.
File : debian_DLA-526.nasl - Type : ACT_GATHER_INFO
2016-06-23Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10698.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2015-06-01Name : The remote openSUSE host is missing a security update.
File : openSUSE-2015-389.nasl - Type : ACT_GATHER_INFO
2015-04-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL16389.nasl - Type : ACT_GATHER_INFO
2015-03-30Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2015-091.nasl - Type : ACT_GATHER_INFO
2015-01-19Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_mysql_20130924.nasl - Type : ACT_GATHER_INFO
2014-12-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10601.nasl - Type : ACT_GATHER_INFO
2014-12-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10627.nasl - Type : ACT_GATHER_INFO
2014-12-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10659.nasl - Type : ACT_GATHER_INFO
2014-10-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL14410.nasl - Type : ACT_GATHER_INFO
2014-10-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL14907.nasl - Type : ACT_GATHER_INFO
2014-10-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL8178.nasl - Type : ACT_GATHER_INFO
2014-09-05Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201409-04.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_libmariadbclient16-110701.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_libmysqlclient-devel-110607.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_libmysqlclusterclient16-110706.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-273.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-274.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-276.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_libmariadbclient16-110701.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_libmysqlclient-devel-110607.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_libmysqlclusterclient16-110706.nasl - Type : ACT_GATHER_INFO