Oracle MySQL Server CVE-2017-3331 Remote Security Vulnerability

Oracle MySQL Server is prone to a remote security vulnerability in MySQL Server.

The vulnerability can be exploited over the 'MySQL Protocol' protocol. The 'Server: DML' sub component is affected.

This vulnerability affects the following supported versions:
5.7.11 to 5.7.17

Information

Bugtraq ID: 97772
Class: Unknown
CVE: CVE-2017-3331

Remote: Yes
Local: No
Published: Apr 18 2017 12:00AM
Updated: Apr 18 2017 12:00AM
Credit: Zuozhi Fan formerly of Alibaba
Vulnerable: Oracle Mysql 5.7.17
Oracle Mysql 5.7.16
Oracle Mysql 5.7.15
Oracle Mysql 5.7.14
Oracle Mysql 5.7.13
Oracle Mysql 5.7.12
Oracle Mysql 5.7.11

Not Vulnerable:

Exploit

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

References:

Oracle Homepage (Oracle)
Oracle Critical Patch Update Advisory - April 2017 (Oracle)

Source: www.securityfocus.com

Exploit Collector

Search Exploit