NNSquad - Network Neutrality Squad
[ NNSquad ] Serious new MySQL security vulnerability
Serious new MySQL security vulnerability
http://j.mp/LXunyu (Sucuri)
"A serious security vulnerability discovered in MySQL was disclosed
this weekend. It basically allows anyone to bypass authentication and
login directly into the database. We tried on a few 64bit Ubuntu
systems and were able to replicate the issue (it seems that only 64
bit platforms are affected)."
- - -
Of course, having MySQL accessible directly from the Net without
connection restrictions is A Bad Idea in any case.
--Lauren--
Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren
Co-Founder: People For Internet Responsibility: http://www.pfir.org
Founder:
- Data Wisdom Explorers League: http://www.dwel.org
- Network Neutrality Squad: http://www.nnsquad.org
- Global Coalition for Transparent Internet Performance: http://www.gctip.org
- PRIVACY Forum: http://www.vortex.com
Member: ACM Committee on Computers and Public Policy
Lauren's Blog: http://lauren.vortex.com
Google+: http://vortex.com/g+lauren / Twitter: http://vortex.com/t-lauren
Tel: +1 (818) 225-2800 / Skype: vortex.com
_______________________________________________
nnsquad mailing list
http://lists.nnsquad.org/mailman/listinfo/nnsquad