Published on June 2nd, 2012 📆 | 5104 Views ⚑

MySql Authentication Bypass Exploit

iSpeech
Dave Kennedy - There has been a new MYSQL authentication bypass exploit released on seclist here: . It is absolutely trivial to gain root access to a MySQL database at this point. Thanks to jduck for the tweet bringing this to our attention.

https://www.secmaniac.com/blog/2012/06/11/massive-mysql-authentication-bypass-exploit/

HD Moore - A Tragically Comedic Security Flaw in MySQL

and there is more info about this bug : https://seclists.org/oss-sec/2012/q2/493

All MariaDB and MySQL versions up to 5.1.61, 5.2.11, 5.3.5, 5.5.22 are vulnerable.

Tagged with: authentication • bypass • exploit • mysql

Comments are closed.

🌟 Your Account

Username/Email Password
Remember Me
Register
🔔 Email Subscriptions

Get new posts by email
- Donate Via Wallets
  MetaMask
  
  Trust Wallet
  
  Binance Wallet
  
  WalletConnect
Popular
- New Emerging APT Threat Exploiting WinRAR Flaw by Admin November 16, 2023 Nov 16, 2023NewsroomAdvanced Persistent Threat / Zero-Day A hacking group… (8)
- WordPress UserPro 5.1.x Password Reset /… by Admin November 22, 2023 Vulnerability Details & Technical AnalysisPassword Reset to Privilege Escalation using… (6)
- This Is the Ops Manual for the Most Tech-Savvy… by Admin November 9, 2023 In fact, in a surprising majority of cases, DxE investigators… (6)
- CISA Has a New Road Map for Handling Weaponized AI by Admin November 15, 2023 Last month, a 120-page United States executive order laid out… (6)
Gloss
- Washington Times News Today on Iranian Hackers Launches Destructive Cyberattacks on Israeli Tech and Education Sectors
- Lucas Herry on This Is the Ops Manual for the Most Tech-Savvy Animal Liberation Group in the US
- 126rt.com on Iranian Hackers Launches Destructive Cyberattacks on Israeli Tech and Education Sectors
- robwks on Ubuntu Security Notice USN-6423-2 – Torchsec
- julidyt on ChurchCRM 4.5.4 SQL Injection – Torchsec
- julinpk on Red Hat Security Advisory 2023-5714-01 – Torchsec
- julihnu on A New Protocol Vulnerability Will Haunt the Web for Years
- irinhha on A New Protocol Vulnerability Will Haunt the Web for Years
- irintti on A New Protocol Vulnerability Will Haunt the Web for Years
- irinkum on A New Protocol Vulnerability Will Haunt the Web for Years
☕️Social Media

Torchsec

Tweets by Torch_sec
👥Members

Newest | Active | Popular
- Emory Nowacki
  
  registered 15 hours, 3 minutes ago
- Mari Rede
  
  registered 15 hours, 47 minutes ago
- Biswajit Swain
  
  registered 21 hours, 19 minutes ago
- Kassie Cleveland
  
  registered 23 hours, 35 minutes ago
- Dorothea Witherspoon
  
  registered 1 day, 3 hours ago
🌍 Forum Groups

Newest | Active | Popular | Alphabetical
- General Talk
  
  active 15 hours, 3 minutes ago
- Gaming
  
  active 15 hours, 3 minutes ago
- Pentest Tutorials
  
  active 15 hours, 3 minutes ago
- Networking
  
  active 15 hours, 3 minutes ago
- Linux / Open Source
  
  active 15 hours, 3 minutes ago
linktr.ee/obewyn

We share and comment on interesting infosec related news, tools and more. Follow us on RSS ,Facebook or Twitter for the latest updates. Torchsec is designed to help Auditors, Pentesters & Security Experts to keep their ethical hacking oriented toolbox up-to-date .
This website is made for educational and ethical testing purposes only。It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this website.

MySql Authentication Bypass Exploit

🌟 Your Account

🔔 Email Subscriptions

Get new posts by email

Donate Via Wallets

Popular

Gloss

☕️Social Media

👥Members

🌍 Forum Groups