CVE-2014-0437

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2014-0437
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

3.5 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:M/Au:S/C:N/I:N/A:P

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html Vendor Advisory
http://www.securityfocus.com/bid/64758 Third Party Advisory VDB Entry
http://secunia.com/advisories/56580 Not Applicable
http://secunia.com/advisories/56541 Not Applicable
http://www.debian.org/security/2014/dsa-2845 Third Party Advisory
http://ubuntu.com/usn/usn-2086-1 Third Party Advisory
http://www.securityfocus.com/bid/64849 Third Party Advisory VDB Entry
http://osvdb.org/102074 Broken Link
http://secunia.com/advisories/56491 Not Applicable
http://rhn.redhat.com/errata/RHSA-2014-0189.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-0164.html Third Party Advisory
http://www.debian.org/security/2014/dsa-2848 Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-0186.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2014-0173.html Third Party Advisory
http://security.gentoo.org/glsa/glsa-201409-04.xml Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/90385 Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*

Configuration 4 (hide)

OR cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

Configuration 5 (hide)

OR cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:6.5:*:*:*:*:*:*:*
Information

Published : 2014-01-15 08:08

Updated : 2022-09-16 12:57

NVD link : CVE-2014-0437

Mitre link : CVE-2014-0437

JSON object : View

CWE
NVD-CWE-noinfo
Advertisement

dedicated server usa
Products Affected

redhat

  • enterprise_linux_desktop
  • enterprise_linux_server_aus
  • enterprise_linux_workstation
  • enterprise_linux_server_tus
  • enterprise_linux_server
  • enterprise_linux_eus

oracle

  • mysql

mariadb

  • mariadb

canonical

  • ubuntu_linux

debian

  • debian_linux