The news about the vulnerability in MySQL and MariaDB spreads like a wild fire. I have covered about this vulnerability in E Hacking news as news article. Here, i am going to share the same thing from the perspective of a penetration tester.
The MySQL and MariaDB versions 5.161,5.2.11,5.3.5 and 5.5.c2 are affected version.
The vulnerability allows an attacker to access MySQL database without
CVE-2012-2122: Exploiting authentication bypass vulnerability in MySQL and MariaDB
Comments