CVE-2012-5060

2013-01-1701:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2012-5060

oracle

mysql

server component

remote authenticated users

gis extension

4.4 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

59.5%

JSON

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.65 and earlier and 5.5.27 and earlier allows remote authenticated users to affect availability, related to GIS Extension.

CPENameOperatorVersion
oracle:mysqloracle mysqlle5.5.27
oracle:mysqloracle mysqlle5.1.65
mariadb:mariadbmariadblt5.1.66
mariadb:mariadbmariadblt5.5.28
canonical:ubuntu_linuxcanonical ubuntu linuxeq11.10
canonical:ubuntu_linuxcanonical ubuntu linuxeq12.10
canonical:ubuntu_linuxcanonical ubuntu linuxeq10.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq12.04

CPE	Name	Operator	Version
oracle:mysql	oracle mysql	le	5.5.27
oracle:mysql	oracle mysql	le	5.1.65
mariadb:mariadb	mariadb	lt	5.1.66
mariadb:mariadb	mariadb	lt	5.5.28
canonical:ubuntu_linux	canonical ubuntu linux	eq	11.10
canonical:ubuntu_linux	canonical ubuntu linux	eq	12.10
canonical:ubuntu_linux	canonical ubuntu linux	eq	10.04
canonical:ubuntu_linux	canonical ubuntu linux	eq	12.04