1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: MySQL Server SELECT Statement EXE Upload

Attack: MySQL Server SELECT Statement EXE Upload

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to upload a binary executable file in MySQL Servers using a SELECT statement followed by INTO DUMPFILE or INTO OUTFILE.

Additional Information

MySQL is a freely available SQL database that is available for multiple platforms.

MySQL is prone to an upload vulnerability wherein an SQL SELECT statement is used to upload an executable file to the server.

Affected

  • MySQL Server
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube