CVE-2017-3462 in MySQL Server
Summary
by MITRE
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Analysis
by VulDB Data Team • 12/20/2020
The vulnerability identified as CVE-2017-3462 resides within Oracle MySQL Server's security privilege subsystem, specifically affecting versions 5.5.54 and earlier, 5.6.35 and earlier, and 5.7.17 and earlier. This represents a significant availability threat that operates through multiple network protocols, making it particularly dangerous in enterprise environments where MySQL serves as a critical database backend. The vulnerability's classification as easily exploitable indicates that attackers with high privileged access and network connectivity can leverage this weakness to compromise the target system, aligning with CWE-284 which addresses improper access control mechanisms in software systems.
The technical flaw manifests as a privilege escalation issue that allows authenticated attackers with elevated privileges to manipulate the server's operational behavior in ways that can lead to complete denial of service conditions. When exploited, this vulnerability can cause the MySQL server to hang or experience frequently repeatable crashes, effectively rendering the database service unavailable to legitimate users and applications. The attack vector operates over network protocols, requiring only that an attacker possess high-privileged credentials and network access to the MySQL server, which significantly reduces the barrier to exploitation in compromised environments.
From an operational impact perspective, the vulnerability poses a severe threat to database availability and business continuity, as successful exploitation results in complete denial of service conditions that can disrupt critical applications relying on MySQL databases. The CVSS 3.0 base score of 4.9 reflects the moderate to high severity of the availability impact, with the vector indicating network accessibility, low attack complexity, high privilege requirements, and no user interaction needed. This vulnerability particularly affects organizations where MySQL serves as a foundational component of their data infrastructure, as the resulting service disruption can cascade through dependent applications and systems.
The security implications extend beyond immediate service disruption to encompass potential data integrity concerns and operational resilience challenges. Organizations should consider implementing network segmentation and access controls to limit exposure, while also ensuring timely patch deployment for affected MySQL versions. The vulnerability demonstrates the importance of maintaining up-to-date database software and implementing robust privilege management practices, as highlighted by ATT&CK technique T1078 which addresses valid accounts and privilege escalation. Additionally, this weakness underscores the necessity of monitoring database server behavior for unusual patterns that might indicate exploitation attempts, particularly in environments where high-privilege accounts are compromised.