在SecList上,king cope一口氣發佈了好幾個MySQL的0Day,簡單記錄一下:
MySQL4.x用戶名暴力查詢漏洞
http://seclists.org/fulldisclosure/2012/Dec/9
MySQL(Windows)遠端提權漏洞[包括掃描及利用程式](stunet利用的0day)
http://seclists.org/fulldisclosure/2012/Dec/13
MySQL(Linux)遠端資料庫提權漏洞
http://seclists.org/fulldisclosure/2012/Dec/6
MySQL拒絕服務(DOS)漏洞
http://seclists.org/fulldisclosure/2012/Dec/7
MySQL(Linux)緩衝區棧溢出漏洞
http://seclists.org/fulldisclosure/2012/Dec/4
MySQL(Linux)堆溢出漏洞
http://seclists.org/fulldisclosure/2012/Dec/5
Hits: 88