CVE-2016-6664 – Oracle / MySQL – Race condition

December 14, 2021

CVE-2016-6664 is a race condition vulnerability impacting multiple versions of Oracle MySQL. An exploit was observed in open source and subsequently shared in the underground. Additionally, a walk-through demo of an exploit was shared via YouTube.

Summary:

CVE-2016-6664 is a race condition vulnerability impacting multiple versions of Oracle MySQL. An exploit was observed in open source and subsequently shared in the underground. Additionally, a walk-through demo of an exploit was shared via YouTube.

PoC Links(if available):

Exploit DB link –
https://www.exploit-db.com/exploits/40679

Known Counter Measures:

Oracle addressed the vulnerability in a critical patch update advisory with updated versions.

Links to patches(if available)

https://www.oracle.com/security-alerts/cpuoct2016.html

You may have missed

d4cb86e6975a57af69c87d02df1193dba7268554c7bef971a8dae7d2df16127e

HardeningMeter – Open-Source Python Tool Carefully Designed To Comprehensively Assess The Security Hardening Of Binaries And Systems

May 5, 2024
Sliver C2

Sliver C2 Detected – 185[.]203[.]119[.]151:31337

May 5, 2024
gophish

GoPhish Login Page Detected – 34[.]163[.]246[.]120:443

May 5, 2024
Sliver C2

Sliver C2 Detected – 146[.]70[.]54[.]90:31337

May 5, 2024
Sliver C2

Sliver C2 Detected – 35[.]224[.]239[.]139:31337

May 5, 2024