Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2012-5612
HistoryDec 03, 2012 - 12:00 a.m.

CVE-2012-5612

2012-12-0300:00:00
ubuntu.com
ubuntu.com
10

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.961 High

EPSS

Percentile

99.5%

JSON

Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions
through 5.5.28, and MariaDB 5.5.28a and possibly other versions, allows
remote authenticated users to cause a denial of service (memory corruption
and crash) and possibly execute arbitrary code, as demonstrated using
certain variations of the (1) USE, (2) SHOW TABLES, (3) DESCRIBE, (4) SHOW
FIELDS FROM, (5) SHOW COLUMNS FROM, (6) SHOW INDEX FROM, (7) CREATE TABLE,
(8) DROP TABLE, (9) ALTER TABLE, (10) DELETE FROM, (11) UPDATE, and (12)
SET PASSWORD commands.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchmysql-5.5< 5.5.29-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchmysql-5.5< 5.5.29-0ubuntu0.12.10.1UNKNOWN

Related

checkpoint_advisories 2
mariadbunix 1
packetstorm 1
cve 1
prion 1
altlinux 1
openvas 6
suse 1
nessus 12
thn 1
threatpost 2
freebsd 1
securityvulns 2
ubuntu 1
oracle 1
gentoo 1
checkpoint_advisories
checkpoint_advisories
Oracle MySQL DELETE Heap Buffer Overflow (CVE-2012-5612)
2012-12-20 00:00:00
Oracle MySQL DELETE Heap Buffer Overflow - Improved Performance (CVE-2012-5612)
2012-12-20 00:00:00
mariadbunix
mariadbunix
CVE-2012-5612
2012-12-03 12:49:00
packetstorm
packetstorm
Oracle MySQL Heap Overrun
2012-12-03 00:00:00
cve
cve
CVE-2012-5612
2012-12-03 12:49:00
prion
prion
Heap overflow
2012-12-03 12:49:00
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version April
2013-04-01 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:0262-1)
2021-06-09 00:00:00
Oracle MySQL Server 5.5 <= 5.5.28 Security Update (cpujan2013) - Windows
2021-02-09 00:00:00
Oracle MySQL Server 5.5 <= 5.5.28 Security Update (cpujan2013) - Linux
2021-02-09 00:00:00
suse
suse
Security update for MySQL (important)
2013-02-09 16:04:18
nessus
nessus
SuSE 11.2 Security Update : MySQL (SAT Patch Number 7251)
2013-02-10 00:00:00
FreeBSD : mysql/mariadb/percona server -- multiple vulnerabilities (8c773d7f-6cbb-11e2-b242-c8600054b392)
2013-02-04 00:00:00
Mandriva Linux Security Advisory : mariadb (MDVSA-2013:102)
2013-04-20 00:00:00
thn
thn
Multiple MySQL database Zero-day vulnerabilities published
2012-12-03 13:54:00
threatpost
threatpost
Oracle Releases 86 Patches in its January Critical Patch Update
2013-01-16 14:25:53
Experts Downplay MySQL Database Zero-Days
2012-12-03 19:31:06
freebsd
freebsd
mysql/mariadb/percona server -- multiple vulnerabilities
2012-12-01 00:00:00
securityvulns
securityvulns
MySQL multiple security vulnerabilities
2012-12-07 00:00:00
Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities
2013-02-24 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2013-01-22 00:00:00
oracle
oracle
Oracle Critical Patch Update - January 2013
2013-01-15 00:00:00
gentoo
gentoo
MySQL: Multiple vulnerabilities
2013-08-29 00:00:00

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.961 High

EPSS

Percentile

99.5%

JSON
Related for UB:CVE-2012-5612
checkpoint_advisories2mariadbunix1packetstorm1cve1prion1altlinux1openvas6suse1nessus12thn1threatpost2freebsd1securityvulns2ubuntu1oracle1gentoo1