CVE-2012-5615 in Oracle MySQL Serverinfo

Zusammenfassung (Englisch)

MySQL 5.5.19 and possibly other versions, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending on whether a user name exists, which allows remote attackers to enumerate valid usernames.

Reservieren

24.10.2012

Veröffentlichung

03.12.2012

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
67974	Oracle MySQL Server Messages Information Disclosure	200	Proof-of-Concept	Offizieller Fix	CVE-2012-5615
7068	Oracle MySQL Server Authentication Information Disclosure	200	Proof-of-Concept	Offizieller Fix	CVE-2012-5615

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

◂ ZurückÜbersichtWeiter ▸

Do you need the next level of professionalism?

Upgrade your account now!