CVE-2013-3793
First published: Wed Jul 17 2013(Updated: )
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Solaris and Zettabyte File System (ZFS) | =11.3 | |
| Oracle MySQL | >=5.5.0<=5.5.31 | |
| Oracle MySQL | >=5.6.0<=5.6.11 | |
| Debian | =7.0 | |
| SUSE Linux | =11.4 | |
| SUSE Linux | =12.2 | |
| SUSE Linux | =12.3 | |
| SUSE Linux Enterprise Desktop | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| SUSE Linux Enterprise Software Development Kit | =11-sp3 | |
| Ubuntu | =10.04 | |
| Ubuntu | =12.04 | |
| Ubuntu | =12.10 | |
| Ubuntu | =13.04 | |
| MariaDB | >=5.5.0<5.5.32 | |
| MariaDB | >=10.0.0<10.0.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00022.html
- http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00024.html
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00008.html
- http://osvdb.org/95323
- http://secunia.com/advisories/54300
- http://www.debian.org/security/2013/dsa-2818
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
- http://www.securityfocus.com/bid/61264
- http://www.ubuntu.com/usn/USN-1909-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85710
Frequently Asked Questions
What is the severity of CVE-2013-3793?
CVE-2013-3793 is classified with a medium severity, as it affects the availability of MySQL Server for remote authenticated users.
How do I fix CVE-2013-3793?
To remediate CVE-2013-3793, you should upgrade MySQL Server to a version later than 5.5.31 or 5.6.11.
Which versions of MySQL are affected by CVE-2013-3793?
CVE-2013-3793 affects MySQL versions 5.5.31 and earlier, as well as 5.6.11 and earlier.
Can CVE-2013-3793 be exploited remotely?
Yes, CVE-2013-3793 allows remote authenticated users to exploit the vulnerability affecting the MySQL Server component.
What types of systems are affected by CVE-2013-3793?
CVE-2013-3793 impacts various systems running affected versions of MySQL, including Oracle Solaris, Debian, and Ubuntu.
- agent/references
- agent/type
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle solaris and zettabyte file system (zfs)
- version/oracle solaris and zettabyte file system (zfs)/11.3
- canonical/oracle mysql
- version/oracle mysql/5.5.0
- version/oracle mysql/5.5.31
- version/oracle mysql/5.6.0
- version/oracle mysql/5.6.11
- vendor/debian
- canonical/debian
- version/debian/7.0
- vendor/opensuse
- canonical/suse linux
- version/suse linux/11.4
- version/suse linux/12.2
- version/suse linux/12.3
- vendor/suse
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/11-sp3
- canonical/suse linux enterprise server
- version/suse linux enterprise server/11-sp3
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/11-sp3
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/10.04
- version/ubuntu/12.04
- version/ubuntu/12.10
- version/ubuntu/13.04
- vendor/mariadb
- canonical/mariadb
- version/mariadb/5.5.0
- version/mariadb/10.0.0