Oracle MySQL could allow a local authenticated attacker to gain elevated privileges on the system, caused by the improper handling of the creation of error log file by the mysqld_safe script. An attacker could exploit this vulnerability to gain root privileges on the system. IBM Security Guardium Database Activity Monitor has fixed this issue
CVE(s): CVE-2016-6664
Affected product(s) and affected version(s):
IBM Security Guardium Database Activity Monitor V 9, 9.1, 9.5
IBM Security Guardium Database Activity Monitor V10, 10.0.1, 10.1, 10.1.2
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ijoUIk
X-Force Database: http://ift.tt/2hLdMHl
from IBM Product Security Incident Response Team http://ift.tt/2ijrb6u
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.