Two new security vulnerabilities have been found in MySql, an opensource database management system. MySQL is extremely popular and is listed as the #2 world’s most popular database.
One of the flaws allows a hacker to execute code to elevate their user status to a database system user. This elevation could allow the hacker to gain complete access to all databases on the hacked server. The second flaw allows a hacker to escalate their user privileges to root user.
Patches for these exploits are already available, and users of MySQL are urged to apply them immediately.
Information is King! And gaining access to information gives anyone the keys to the castle. So much information is stored in databases about us, it’s scary. Popular database flaws like this are scary. It adds one more tool in a hackers toolbox to gain access to our information. The recent breaches of online accounts and credit card information just goes to reinforce the fact that hackers will always target this valuable information!
Loi Van Tran says
Great information Scott,
I do you use MySql on personal projects, and didn’t hear of this until your post. Although the information I have on my database is for testing purposes, it still leaves a vulnerability for attackers to access my system. It shows how important it is to keep you systems patched and updated.