| Subject | Security Problems highlighted for MySQL and PostgreSQL |
|---|---|
| Author | Si Carter |
| Post date | 2005-06-16T09:12:23Z |
MySQL and PostgreSQL (as well as Oracle) have been highlighted in "The
Twenty Most Critical Internet Security Vulnerabilities" list.
Visit (http://www.sans.org/top20/#w1) and go to section "U9. Databases"
A quick visit to (http://www.cve.mitre.org - Common Vulnerabilities and
Exposures) shows that:
MySQL has 52 entries.
PostgreSQL has 28 entries.
Interbase has 7 entries.
Firebird has two entries (both prior to v1.5)
The above stats should be taken with a pinch of salt as some are only
candidates for inclusion and others include older versions of the product.
Firebird (and Interbase) are not mentioned in the report probably because
they are not as widely used as MySQL, but it could also indicate there are
no known vulnerabilities.
Rgds
Si Carter
http://www.tectsoft.net/
http://www.fbtalk.net/
Twenty Most Critical Internet Security Vulnerabilities" list.
Visit (http://www.sans.org/top20/#w1) and go to section "U9. Databases"
A quick visit to (http://www.cve.mitre.org - Common Vulnerabilities and
Exposures) shows that:
MySQL has 52 entries.
PostgreSQL has 28 entries.
Interbase has 7 entries.
Firebird has two entries (both prior to v1.5)
The above stats should be taken with a pinch of salt as some are only
candidates for inclusion and others include older versions of the product.
Firebird (and Interbase) are not mentioned in the report probably because
they are not as widely used as MySQL, but it could also indicate there are
no known vulnerabilities.
Rgds
Si Carter
http://www.tectsoft.net/
http://www.fbtalk.net/