Oracle MySQL CVE-2013-1531 Remote MySQL Server Vulnerability

Bugtraq ID:	59202
Class:	Unknown
CVE:	CVE-2013-1531
Remote:	Yes
Local:	No
Published:	Apr 16 2013 12:00AM
Updated:	Sep 02 2013 12:10AM
Credit:	Oracle
Vulnerable:	Red Hat Enterprise Linux Workstation Optional 6 Red Hat Enterprise Linux Workstation 6 Red Hat Enterprise Linux Server Optional 6 Red Hat Enterprise Linux Server 6 Red Hat Enterprise Linux HPC Node Optional 6 Red Hat Enterprise Linux HPC Node 6 Red Hat Enterprise Linux Desktop Optional 6 Red Hat Enterprise Linux Desktop 6 Oracle Enterprise Linux 6.2 Oracle Enterprise Linux 6 MandrakeSoft Enterprise Server 5 x86_64 MandrakeSoft Enterprise Server 5 Gentoo Linux CentOS CentOS 6 Avaya Aura Experience Portal 6.0 + Avaya Communication Manager Server DEFINITY Server SI/CS + Avaya Communication Manager Server S8100 + Avaya Communication Manager Server S8300 + Avaya Communication Manager Server S8500 + Avaya Communication Manager Server S8700
Not Vulnerable:

Oracle MySQL CVE-2013-1531 Remote MySQL Server Vulnerability

Oracle MySQL is prone to a remote vulnerability in MySQL Server.

The vulnerability can be exploited over the 'MySQL Protocol' protocol. The 'Server Privileges' sub component is affected.

This vulnerability affects the following supported versions:
5.1.66 and earlier, 5.5.28 and earlier

Oracle MySQL CVE-2013-1531 Remote MySQL Server Vulnerability

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Oracle MySQL CVE-2013-1531 Remote MySQL Server Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Oracle MySQL CVE-2013-1531 Remote MySQL Server Vulnerability

References: