CVE-2014-4287 - Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows re

CVE-2014-4287

Summary

Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:CHARACTER SETS.

References

Vulnerable Configurations

cpe:2.3:a:oracle:mysql:5.5.38:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:5.5.38:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:5.6.19:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:5.6.19:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*

CVSS

Base:	4.0 (as of 03-01-2017 - 02:59)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	SINGLE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:S/C:N/I:N/A:P

redhat via4

rpms

mysql55-mysql-0:5.5.40-2.el5
mysql55-mysql-bench-0:5.5.40-2.el5
mysql55-mysql-devel-0:5.5.40-2.el5
mysql55-mysql-libs-0:5.5.40-2.el5
mysql55-mysql-server-0:5.5.40-2.el5
mysql55-mysql-test-0:5.5.40-2.el5
mariadb-1:5.5.40-1.el7_0
mariadb-bench-1:5.5.40-1.el7_0
mariadb-devel-1:5.5.40-1.el7_0
mariadb-embedded-1:5.5.40-1.el7_0
mariadb-embedded-devel-1:5.5.40-1.el7_0
mariadb-libs-1:5.5.40-1.el7_0
mariadb-server-1:5.5.40-1.el7_0
mariadb-test-1:5.5.40-1.el7_0

refmap via4

bid	70517
confirm	http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
suse	SUSE-SU-2015:0743

Last major update

03-01-2017 - 02:59

Published

15-10-2014 - 15:55