CVE-2014-4260

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR.

Published: Jul 17, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-4260
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.5
AV:N/AC:L/Au:S/C:N/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / mysql	5.5.0	5.5.37.x
oracle / mysql	5.6.0	5.6.17.x
oracle / solaris	11.3	11.3.x
debian / debian_linux	7.0	7.0.x
suse / linux_enterprise_desktop	11-sp3	11-sp3.x
suse / linux_enterprise_server	11-sp3	11-sp3.x
suse / linux_enterprise_software_development_kit	11-sp3	11-sp3.x
suse / linux_enterprise_workstation_extension	12	12.x
suse / linux_enterprise_server	12	12.x
suse / linux_enterprise_software_development_kit	12	12.x
suse / linux_enterprise_desktop	12	12.x
mariadb / mariadb	5.5.0	5.5.38
mariadb / mariadb	10.0.0	10.0.12

http://lists.opensuse.org/opensuse-security-announce/2014-08/msg00012.html
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
http://seclists.org/fulldisclosure/2014/Dec/23
http://secunia.com/advisories/60425
http://www.debian.org/security/2014/dsa-2985
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www.securityfocus.com/archive/1/534161/100/0/threaded
http://www.securityfocus.com/bid/68573
http://www.securitytracker.com/id/1030578
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/94621

Vulnerability Database

289,697

CVE-2014-4260