[BlueOnyx:10774] Re: MySQL Vulnerability
Ralf Quint
Smoothwall at gmx.net
Tue Jun 12 17:10:50 -05 2012
At 09:45 AM 6/12/2012, Michael Stauber wrote:
>Hi Tobias,
>
> > I read a tip on how to check if your mysql installation ist
> > vulnerable yesterday:
> >
> > for i in `seq 1 1000`; do mysql -u root --password=bad -h 127.0.0.1
> > 2>/dev/null; done
> >
> > Just did this on an BO server and did not get access - this is a good
> > sign! :)
>
>Yeah, when this vulnerability was mentioned on heise.de, I tested
>BlueOnyx as well and it looks like we are not affected.
Here
https://community.rapid7.com/community/metasploit/blog/2012/06/11/cve-2012-2122-a-tragically-comedic-security-flaw-in-mysql
is a blog post that lists in more details which versions on which
Linux distros are effected (or not)...
Ralf
More information about the Blueonyx
mailing list