Vulnerability Details CVE-2016-6662
Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x before 5.6.32-78.0, and 5.7.x before 5.7.14-7 allow local users to create arbitrary configurations and bypass certain protection mechanisms by setting general_log_file to a my.cnf configuration. NOTE: this can be leveraged to execute arbitrary code with root privileges by setting malloc_lib. NOTE: the affected MySQL version information is from Oracle's October 2016 CPU. Oracle has not commented on third-party claims that the issue was silently patched in MySQL 5.5.52, 5.6.33, and 5.7.15.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.896
EPSS Ranking 99.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html
- http://rhn.redhat.com/errata/RHSA-2016-2058.html
- http://rhn.redhat.com/errata/RHSA-2016-2059.html
- http://rhn.redhat.com/errata/RHSA-2016-2060.html
- http://rhn.redhat.com/errata/RHSA-2016-2061.html
- http://rhn.redhat.com/errata/RHSA-2016-2062.html
- http://rhn.redhat.com/errata/RHSA-2016-2077.html
- http://rhn.redhat.com/errata/RHSA-2016-2130.html
- http://rhn.redhat.com/errata/RHSA-2016-2131.html
- http://rhn.redhat.com/errata/RHSA-2016-2595.html
- http://rhn.redhat.com/errata/RHSA-2016-2749.html
- http://rhn.redhat.com/errata/RHSA-2016-2927.html
- http://rhn.redhat.com/errata/RHSA-2016-2928.html
- http://rhn.redhat.com/errata/RHSA-2017-0184.html
- http://seclists.org/fulldisclosure/2016/Sep/23
- http://www.debian.org/security/2016/dsa-3666
- http://www.openwall.com/lists/oss-security/2016/09/12/3
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.securityfocus.com/bid/92912
- http://www.securitytracker.com/id/1036769
- https://jira.mariadb.org/browse/MDEV-10465
- https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/
- https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/
- https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/
- https://security.gentoo.org/glsa/201701-01
- https://www.exploit-db.com/exploits/40360/
- https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/
- http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html
- http://rhn.redhat.com/errata/RHSA-2016-2058.html
- http://rhn.redhat.com/errata/RHSA-2016-2059.html
- http://rhn.redhat.com/errata/RHSA-2016-2060.html
- http://rhn.redhat.com/errata/RHSA-2016-2061.html
- http://rhn.redhat.com/errata/RHSA-2016-2062.html
- http://rhn.redhat.com/errata/RHSA-2016-2077.html
- http://rhn.redhat.com/errata/RHSA-2016-2130.html
- http://rhn.redhat.com/errata/RHSA-2016-2131.html
- http://rhn.redhat.com/errata/RHSA-2016-2595.html
- http://rhn.redhat.com/errata/RHSA-2016-2749.html
- http://rhn.redhat.com/errata/RHSA-2016-2927.html
- http://rhn.redhat.com/errata/RHSA-2016-2928.html
- http://rhn.redhat.com/errata/RHSA-2017-0184.html
- http://seclists.org/fulldisclosure/2016/Sep/23
- http://www.debian.org/security/2016/dsa-3666
- http://www.openwall.com/lists/oss-security/2016/09/12/3
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.securityfocus.com/bid/92912
- http://www.securitytracker.com/id/1036769
- https://jira.mariadb.org/browse/MDEV-10465
- https://mariadb.com/kb/en/mariadb/mariadb-10027-release-notes/
- https://mariadb.com/kb/en/mariadb/mariadb-10117-release-notes/
- https://mariadb.com/kb/en/mariadb/mariadb-5551-release-notes/
- https://security.gentoo.org/glsa/201701-01
- https://www.exploit-db.com/exploits/40360/
- https://www.percona.com/blog/2016/09/12/percona-server-critical-update-cve-2016-6662/
Products affected by CVE-2016-6662
-
cpe:2.3:a:mariadb:mariadb:10.0.0
-
cpe:2.3:a:mariadb:mariadb:10.0.1
-
cpe:2.3:a:mariadb:mariadb:10.0.10
-
cpe:2.3:a:mariadb:mariadb:10.0.11
-
cpe:2.3:a:mariadb:mariadb:10.0.12
-
cpe:2.3:a:mariadb:mariadb:10.0.13
-
cpe:2.3:a:mariadb:mariadb:10.0.14
-
cpe:2.3:a:mariadb:mariadb:10.0.15
-
cpe:2.3:a:mariadb:mariadb:10.0.16
-
cpe:2.3:a:mariadb:mariadb:10.0.17
-
cpe:2.3:a:mariadb:mariadb:10.0.18
-
cpe:2.3:a:mariadb:mariadb:10.0.19
-
cpe:2.3:a:mariadb:mariadb:10.0.2
-
cpe:2.3:a:mariadb:mariadb:10.0.20
-
cpe:2.3:a:mariadb:mariadb:10.0.21
-
cpe:2.3:a:mariadb:mariadb:10.0.22
-
cpe:2.3:a:mariadb:mariadb:10.0.23
-
cpe:2.3:a:mariadb:mariadb:10.0.24
-
cpe:2.3:a:mariadb:mariadb:10.0.25
-
cpe:2.3:a:mariadb:mariadb:10.0.26
-
cpe:2.3:a:mariadb:mariadb:10.0.3
-
cpe:2.3:a:mariadb:mariadb:10.0.4
-
cpe:2.3:a:mariadb:mariadb:10.0.5
-
cpe:2.3:a:mariadb:mariadb:10.0.6
-
cpe:2.3:a:mariadb:mariadb:10.0.7
-
cpe:2.3:a:mariadb:mariadb:10.0.8
-
cpe:2.3:a:mariadb:mariadb:10.0.9
-
cpe:2.3:a:mariadb:mariadb:10.1.0
-
cpe:2.3:a:mariadb:mariadb:10.1.1
-
cpe:2.3:a:mariadb:mariadb:10.1.10
-
cpe:2.3:a:mariadb:mariadb:10.1.11
-
cpe:2.3:a:mariadb:mariadb:10.1.12
-
cpe:2.3:a:mariadb:mariadb:10.1.13
-
cpe:2.3:a:mariadb:mariadb:10.1.14
-
cpe:2.3:a:mariadb:mariadb:10.1.15
-
cpe:2.3:a:mariadb:mariadb:10.1.16
-
cpe:2.3:a:mariadb:mariadb:10.1.2
-
cpe:2.3:a:mariadb:mariadb:10.1.3
-
cpe:2.3:a:mariadb:mariadb:10.1.4
-
cpe:2.3:a:mariadb:mariadb:10.1.5
-
cpe:2.3:a:mariadb:mariadb:10.1.6
-
cpe:2.3:a:mariadb:mariadb:10.1.7
-
cpe:2.3:a:mariadb:mariadb:10.1.8
-
cpe:2.3:a:mariadb:mariadb:10.1.9
-
cpe:2.3:a:mariadb:mariadb:5.5.20
-
cpe:2.3:a:mariadb:mariadb:5.5.21
-
cpe:2.3:a:mariadb:mariadb:5.5.22
-
cpe:2.3:a:mariadb:mariadb:5.5.23
-
cpe:2.3:a:mariadb:mariadb:5.5.24
-
cpe:2.3:a:mariadb:mariadb:5.5.25
-
cpe:2.3:a:mariadb:mariadb:5.5.27
-
cpe:2.3:a:mariadb:mariadb:5.5.28
-
cpe:2.3:a:mariadb:mariadb:5.5.28a
-
cpe:2.3:a:mariadb:mariadb:5.5.33
-
cpe:2.3:a:mariadb:mariadb:5.5.34
-
cpe:2.3:a:mariadb:mariadb:5.5.35
-
cpe:2.3:a:mariadb:mariadb:5.5.40
-
cpe:2.3:a:mariadb:mariadb:5.5.43
-
cpe:2.3:a:mariadb:mariadb:5.5.46
-
cpe:2.3:a:mariadb:mariadb:5.5.47
-
cpe:2.3:a:mariadb:mariadb:5.5.48
-
cpe:2.3:a:mariadb:mariadb:5.5.49
-
cpe:2.3:a:mariadb:mariadb:5.5.50
-
cpe:2.3:a:oracle:mysql:5.5.0
-
cpe:2.3:a:oracle:mysql:5.5.1
-
cpe:2.3:a:oracle:mysql:5.5.10
-
cpe:2.3:a:oracle:mysql:5.5.11
-
cpe:2.3:a:oracle:mysql:5.5.12
-
cpe:2.3:a:oracle:mysql:5.5.13
-
cpe:2.3:a:oracle:mysql:5.5.14
-
cpe:2.3:a:oracle:mysql:5.5.15
-
cpe:2.3:a:oracle:mysql:5.5.16
-
cpe:2.3:a:oracle:mysql:5.5.17
-
cpe:2.3:a:oracle:mysql:5.5.18
-
cpe:2.3:a:oracle:mysql:5.5.19
-
cpe:2.3:a:oracle:mysql:5.5.2
-
cpe:2.3:a:oracle:mysql:5.5.20
-
cpe:2.3:a:oracle:mysql:5.5.21
-
cpe:2.3:a:oracle:mysql:5.5.22
-
cpe:2.3:a:oracle:mysql:5.5.23
-
cpe:2.3:a:oracle:mysql:5.5.24
-
cpe:2.3:a:oracle:mysql:5.5.25
-
cpe:2.3:a:oracle:mysql:5.5.26
-
cpe:2.3:a:oracle:mysql:5.5.27
-
cpe:2.3:a:oracle:mysql:5.5.28
-
cpe:2.3:a:oracle:mysql:5.5.29
-
cpe:2.3:a:oracle:mysql:5.5.3
-
cpe:2.3:a:oracle:mysql:5.5.30
-
cpe:2.3:a:oracle:mysql:5.5.31
-
cpe:2.3:a:oracle:mysql:5.5.32
-
cpe:2.3:a:oracle:mysql:5.5.33
-
cpe:2.3:a:oracle:mysql:5.5.34
-
cpe:2.3:a:oracle:mysql:5.5.35
-
cpe:2.3:a:oracle:mysql:5.5.36
-
cpe:2.3:a:oracle:mysql:5.5.37
-
cpe:2.3:a:oracle:mysql:5.5.38
-
cpe:2.3:a:oracle:mysql:5.5.39
-
cpe:2.3:a:oracle:mysql:5.5.4
-
cpe:2.3:a:oracle:mysql:5.5.40
-
cpe:2.3:a:oracle:mysql:5.5.41
-
cpe:2.3:a:oracle:mysql:5.5.42
-
cpe:2.3:a:oracle:mysql:5.5.43
-
cpe:2.3:a:oracle:mysql:5.5.44
-
cpe:2.3:a:oracle:mysql:5.5.45
-
cpe:2.3:a:oracle:mysql:5.5.46
-
cpe:2.3:a:oracle:mysql:5.5.47
-
cpe:2.3:a:oracle:mysql:5.5.48
-
cpe:2.3:a:oracle:mysql:5.5.49
-
cpe:2.3:a:oracle:mysql:5.5.5
-
cpe:2.3:a:oracle:mysql:5.5.50
-
cpe:2.3:a:oracle:mysql:5.5.51
-
cpe:2.3:a:oracle:mysql:5.5.52
-
cpe:2.3:a:oracle:mysql:5.5.6
-
cpe:2.3:a:oracle:mysql:5.5.7
-
cpe:2.3:a:oracle:mysql:5.5.8
-
cpe:2.3:a:oracle:mysql:5.5.9
-
cpe:2.3:a:oracle:mysql:5.6.0
-
cpe:2.3:a:oracle:mysql:5.6.1
-
cpe:2.3:a:oracle:mysql:5.6.10
-
cpe:2.3:a:oracle:mysql:5.6.11
-
cpe:2.3:a:oracle:mysql:5.6.12
-
cpe:2.3:a:oracle:mysql:5.6.13
-
cpe:2.3:a:oracle:mysql:5.6.14
-
cpe:2.3:a:oracle:mysql:5.6.15
-
cpe:2.3:a:oracle:mysql:5.6.16
-
cpe:2.3:a:oracle:mysql:5.6.17
-
cpe:2.3:a:oracle:mysql:5.6.18
-
cpe:2.3:a:oracle:mysql:5.6.19
-
cpe:2.3:a:oracle:mysql:5.6.2
-
cpe:2.3:a:oracle:mysql:5.6.20
-
cpe:2.3:a:oracle:mysql:5.6.21
-
cpe:2.3:a:oracle:mysql:5.6.22
-
cpe:2.3:a:oracle:mysql:5.6.23
-
cpe:2.3:a:oracle:mysql:5.6.24
-
cpe:2.3:a:oracle:mysql:5.6.25
-
cpe:2.3:a:oracle:mysql:5.6.26
-
cpe:2.3:a:oracle:mysql:5.6.27
-
cpe:2.3:a:oracle:mysql:5.6.28
-
cpe:2.3:a:oracle:mysql:5.6.29
-
cpe:2.3:a:oracle:mysql:5.6.3
-
cpe:2.3:a:oracle:mysql:5.6.30
-
cpe:2.3:a:oracle:mysql:5.6.31
-
cpe:2.3:a:oracle:mysql:5.6.32
-
cpe:2.3:a:oracle:mysql:5.6.33
-
cpe:2.3:a:oracle:mysql:5.6.4
-
cpe:2.3:a:oracle:mysql:5.6.5
-
cpe:2.3:a:oracle:mysql:5.6.6
-
cpe:2.3:a:oracle:mysql:5.6.7
-
cpe:2.3:a:oracle:mysql:5.6.8
-
cpe:2.3:a:oracle:mysql:5.6.9
-
cpe:2.3:a:oracle:mysql:5.7.0
-
cpe:2.3:a:oracle:mysql:5.7.1
-
cpe:2.3:a:oracle:mysql:5.7.10
-
cpe:2.3:a:oracle:mysql:5.7.11
-
cpe:2.3:a:oracle:mysql:5.7.12
-
cpe:2.3:a:oracle:mysql:5.7.13
-
cpe:2.3:a:oracle:mysql:5.7.14
-
cpe:2.3:a:oracle:mysql:5.7.15
-
cpe:2.3:a:oracle:mysql:5.7.2
-
cpe:2.3:a:oracle:mysql:5.7.3
-
cpe:2.3:a:oracle:mysql:5.7.4
-
cpe:2.3:a:oracle:mysql:5.7.5
-
cpe:2.3:a:oracle:mysql:5.7.6
-
cpe:2.3:a:oracle:mysql:5.7.7
-
cpe:2.3:a:oracle:mysql:5.7.8
-
cpe:2.3:a:oracle:mysql:5.7.9
-
cpe:2.3:a:percona:percona_server:5.5
-
cpe:2.3:a:percona:percona_server:5.5.10-20.1
-
cpe:2.3:a:percona:percona_server:5.5.11-20.2
-
cpe:2.3:a:percona:percona_server:5.5.12-20.3
-
cpe:2.3:a:percona:percona_server:5.5.13-20.4
-
cpe:2.3:a:percona:percona_server:5.5.14-20.5
-
cpe:2.3:a:percona:percona_server:5.5.15-21.0
-
cpe:2.3:a:percona:percona_server:5.5.16-22.0
-
cpe:2.3:a:percona:percona_server:5.5.18-23.0
-
cpe:2.3:a:percona:percona_server:5.5.19-24.0
-
cpe:2.3:a:percona:percona_server:5.5.20-24.1
-
cpe:2.3:a:percona:percona_server:5.5.21-25.0
-
cpe:2.3:a:percona:percona_server:5.5.21-25.1
-
cpe:2.3:a:percona:percona_server:5.5.22-25.2
-
cpe:2.3:a:percona:percona_server:5.5.23-25.3
-
cpe:2.3:a:percona:percona_server:5.5.24-26.0
-
cpe:2.3:a:percona:percona_server:5.5.25a-27.1
-
cpe:2.3:a:percona:percona_server:5.5.27-28.0
-
cpe:2.3:a:percona:percona_server:5.5.27-28.1
-
cpe:2.3:a:percona:percona_server:5.5.27-29.0
-
cpe:2.3:a:percona:percona_server:5.5.28-29.1
-
cpe:2.3:a:percona:percona_server:5.5.28-29.2
-
cpe:2.3:a:percona:percona_server:5.5.28-29.3
-
cpe:2.3:a:percona:percona_server:5.5.28-29.4
-
cpe:2.3:a:percona:percona_server:5.5.29-30.0
-
cpe:2.3:a:percona:percona_server:5.5.30-30.1
-
cpe:2.3:a:percona:percona_server:5.5.30-30.2
-
cpe:2.3:a:percona:percona_server:5.5.31-30.3
-
cpe:2.3:a:percona:percona_server:5.5.32-31.0
-
cpe:2.3:a:percona:percona_server:5.5.33-31.1
-
cpe:2.3:a:percona:percona_server:5.5.34-32.0
-
cpe:2.3:a:percona:percona_server:5.5.35-33.0
-
cpe:2.3:a:percona:percona_server:5.5.36-34.0
-
cpe:2.3:a:percona:percona_server:5.5.36-34.1
-
cpe:2.3:a:percona:percona_server:5.5.36-34.2
-
cpe:2.3:a:percona:percona_server:5.5.37-35.0
-
cpe:2.3:a:percona:percona_server:5.5.37-35.1
-
cpe:2.3:a:percona:percona_server:5.5.38-35.2
-
cpe:2.3:a:percona:percona_server:5.5.39-36.0
-
cpe:2.3:a:percona:percona_server:5.5.40-36.1
-
cpe:2.3:a:percona:percona_server:5.5.41-37.0
-
cpe:2.3:a:percona:percona_server:5.5.42-37.1
-
cpe:2.3:a:percona:percona_server:5.5.43-37.2
-
cpe:2.3:a:percona:percona_server:5.5.44-37.3
-
cpe:2.3:a:percona:percona_server:5.5.45-37.4
-
cpe:2.3:a:percona:percona_server:5.5.46-37.5
-
cpe:2.3:a:percona:percona_server:5.5.46-37.6
-
cpe:2.3:a:percona:percona_server:5.5.47-37.7
-
cpe:2.3:a:percona:percona_server:5.5.48-37.8
-
cpe:2.3:a:percona:percona_server:5.5.49-37.9
-
cpe:2.3:a:percona:percona_server:5.5.50-38.0
-
cpe:2.3:a:percona:percona_server:5.5.7
-
cpe:2.3:a:percona:percona_server:5.5.8-20
-
cpe:2.3:a:percona:percona_server:5.5.9-20.1
-
cpe:2.3:a:percona:percona_server:5.6
-
cpe:2.3:a:percona:percona_server:5.6.10-60.2
-
cpe:2.3:a:percona:percona_server:5.6.11-60.3
-
cpe:2.3:a:percona:percona_server:5.6.12-60.4
-
cpe:2.3:a:percona:percona_server:5.6.13-60.5
-
cpe:2.3:a:percona:percona_server:5.6.13-60.6
-
cpe:2.3:a:percona:percona_server:5.6.13-61.0
-
cpe:2.3:a:percona:percona_server:5.6.14-62.0
-
cpe:2.3:a:percona:percona_server:5.6.15-63.0
-
cpe:2.3:a:percona:percona_server:5.6.16-64.0
-
cpe:2.3:a:percona:percona_server:5.6.16-64.1
-
cpe:2.3:a:percona:percona_server:5.6.16-64.2
-
cpe:2.3:a:percona:percona_server:5.6.17-65.0
-
cpe:2.3:a:percona:percona_server:5.6.17-66.0
-
cpe:2.3:a:percona:percona_server:5.6.19-67.0
-
cpe:2.3:a:percona:percona_server:5.6.20-68.0
-
cpe:2.3:a:percona:percona_server:5.6.21-69.0
-
cpe:2.3:a:percona:percona_server:5.6.21-70.0
-
cpe:2.3:a:percona:percona_server:5.6.21-70.1
-
cpe:2.3:a:percona:percona_server:5.6.22-71.0
-
cpe:2.3:a:percona:percona_server:5.6.22-72.0
-
cpe:2.3:a:percona:percona_server:5.6.23-72.1
-
cpe:2.3:a:percona:percona_server:5.6.24-72.2
-
cpe:2.3:a:percona:percona_server:5.6.25-73.0
-
cpe:2.3:a:percona:percona_server:5.6.25-73.1
-
cpe:2.3:a:percona:percona_server:5.6.26-74.0
-
cpe:2.3:a:percona:percona_server:5.6.27-75.0
-
cpe:2.3:a:percona:percona_server:5.6.27-76.0
-
cpe:2.3:a:percona:percona_server:5.6.28-76.1
-
cpe:2.3:a:percona:percona_server:5.6.29-76.2
-
cpe:2.3:a:percona:percona_server:5.6.30-76.3
-
cpe:2.3:a:percona:percona_server:5.6.31-77.0
-
cpe:2.3:a:percona:percona_server:5.6.5-60.0
-
cpe:2.3:a:percona:percona_server:5.6.6-60.1
-
cpe:2.3:a:percona:percona_server:5.7
-
cpe:2.3:a:percona:percona_server:5.7.10-1
-
cpe:2.3:a:percona:percona_server:5.7.10-2
-
cpe:2.3:a:percona:percona_server:5.7.10-3
-
cpe:2.3:a:percona:percona_server:5.7.11-4
-
cpe:2.3:a:percona:percona_server:5.7.12-5
-
cpe:2.3:a:percona:percona_server:5.7.13-6
-
cpe:2.3:a:redhat:openstack:5.0
-
cpe:2.3:a:redhat:openstack:6.0
-
cpe:2.3:a:redhat:openstack:7.0
-
cpe:2.3:a:redhat:openstack:8
-
cpe:2.3:a:redhat:openstack:9
-
cpe:2.3:o:debian:debian_linux:8.0
-
cpe:2.3:o:redhat:enterprise_linux:7.0
-
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
-
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
-
cpe:2.3:o:redhat:enterprise_linux_server:6.0
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6
-
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3
-
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4
-
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5
-
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6
-
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0
-
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0