CVE

Id
58855  
CVE No.
CVE-2012-5612  
Status
Candidate  
Description
Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code, as demonstrated using certain variations of the (1) USE, (2) SHOW TABLES, (3) DESCRIBE, (4) SHOW FIELDS FROM, (5) SHOW COLUMNS FROM, (6) SHOW INDEX FROM, (7) CREATE TABLE, (8) DROP TABLE, (9) ALTER TABLE, (10) DELETE FROM, (11) UPDATE, and (12) SET PASSWORD commands.  
Phase
Assigned (20121024)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
601955 58855 CVE-2012-5612 EXPLOIT-DB:23076  View
601956 58855 CVE-2012-5612 URL:http://www.exploit-db.com/exploits/23076  View
601957 58855 CVE-2012-5612 FULLDISC:20121201 MySQL (Linux) Heap Based Overrun PoC Zeroday  View
601958 58855 CVE-2012-5612 URL:http://seclists.org/fulldisclosure/2012/Dec/5  View
601959 58855 CVE-2012-5612 MLIST:[oss-security] 20121202 Re: Re: [Full-disclosure] MySQL (Linux) Stack based buffer overrun PoC Zeroday  View
601960 58855 CVE-2012-5612 URL:http://www.openwall.com/lists/oss-security/2012/12/02/3  View
601961 58855 CVE-2012-5612 MLIST:[oss-security] 20121202 Re: Re: [Full-disclosure] MySQL (Linux) Stack based buffer overrun PoC Zeroday  View
601962 58855 CVE-2012-5612 URL:http://www.openwall.com/lists/oss-security/2012/12/02/4  View
601963 58855 CVE-2012-5612 CONFIRM:https://mariadb.atlassian.net/browse/MDEV-3908  View
601964 58855 CVE-2012-5612 CONFIRM:http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html  View
601965 58855 CVE-2012-5612 GENTOO:GLSA-201308-06  View
601966 58855 CVE-2012-5612 URL:http://security.gentoo.org/glsa/glsa-201308-06.xml  View
601967 58855 CVE-2012-5612 MANDRIVA:MDVSA-2013:150  View
601968 58855 CVE-2012-5612 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2013:150  View
601969 58855 CVE-2012-5612 MANDRIVA:MDVSA-2013:102  View
601970 58855 CVE-2012-5612 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2013:102  View
601971 58855 CVE-2012-5612 SUSE:SUSE-SU-2013:0262  View
601972 58855 CVE-2012-5612 URL:http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00000.html  View
601973 58855 CVE-2012-5612 UBUNTU:USN-1703-1  View
601974 58855 CVE-2012-5612 URL:http://www.ubuntu.com/usn/USN-1703-1  View
601975 58855 CVE-2012-5612 OVAL:oval:org.mitre.oval:def:16960  View
601976 58855 CVE-2012-5612 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:16960  View
601977 58855 CVE-2012-5612 SECUNIA:53372  View

Related JVN