CVE-2012-5612 in MySQL Serverinformation

Résumé (Anglaise)

Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code, as demonstrated using certain variations of the (1) USE, (2) SHOW TABLES, (3) DESCRIBE, (4) SHOW FIELDS FROM, (5) SHOW COLUMNS FROM, (6) SHOW INDEX FROM, (7) CREATE TABLE, (8) DROP TABLE, (9) ALTER TABLE, (10) DELETE FROM, (11) UPDATE, and (12) SET PASSWORD commands.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

24/10/2012

Divulgation

03/12/2012

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
7414	Oracle MySQL Server Parser buffer overflow	119	Preuve de concept	Correctif officiel	CVE-2012-5612
7065	Oracle MySQL Server Create Table mdl_key_init buffer overflow	119	Preuve de concept	Correctif officiel	CVE-2012-5612

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

◂ PrécédentAperçuSuivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!