SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2015-3152

Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, aka a "BACKRONYM" attack.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:		CVSS V2 Severity:
CVSS Score : 5.9		CVSS Score : 4.3
Exploit Score: 2.2		Exploit Score: 8.6
Impact Score: 3.6		Impact Score: 2.9

CVSS V3 Metrics:		CVSS V2 Metrics:
Attack Vector: NETWORK		Access Vector: NETWORK
Attack Complexity: HIGH		Access Complexity: MEDIUM
Privileges Required: NONE		Authentication: NONE
User Interaction: NONE		Confidentiality: NONE
Scope: UNCHANGED		Integrity: PARTIAL
Confidentiality: NONE		Availability: NONE
Integrity: HIGH
Availability: NONE

Reference:

SECTRACK-1032216

http://www.securityfocus.com/archive/1/535397/100/1100/threaded

http://mysqlblog.fivefarmers.com/2014/04/02/redefining-ssl-option/

http://mysqlblog.fivefarmers.com/2015/04/29/ssltls-in-5-6-and-5-5-ocert-advisory/

http://packetstormsecurity.com/files/131688/MySQL-SSL-TLS-Downgrade.html

http://www.ocert.org/advisories/ocert-2015-003.html

https://access.redhat.com/security/cve/cve-2015-3152

https://github.com/mysql/mysql-server/commit/3bd5589e1a5a93f9c224badf983cd65c45215390

https://jira.mariadb.org/browse/MDEV-7937

https://www.duosecurity.com/blog/backronym-mysql-vulnerability


30479



423868



249461



909



195508



282