5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
mysql is vulnerable to privilege escalation. The vulnerability exists due to a flaw in an improperly-checked return value.
bugs.mysql.com/bug.php?id=64884
dev.mysql.com/doc/refman/5.1/en/news-5-1-62.html
dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html
dev.mysql.com/doc/refman/5.1/en/news-5-1-64.html
dev.mysql.com/doc/refman/5.1/en/news-5-1-65.html
dev.mysql.com/doc/refman/5.1/en/news-5-1-66.html
kb.askmonty.org/en/mariadb-5162-release-notes/
lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html
seclists.org/oss-sec/2012/q2/493
secunia.com/advisories/49417
secunia.com/advisories/53372
security.gentoo.org/glsa/glsa-201308-06.xml
securitytracker.com/id?1027143
www.exploit-db.com/exploits/19092
www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html#AppendixMSQL
www.oracle.com/technetwork/topics/security/cpujul2012-392727.html#AppendixMSQL
www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html#AppendixMSQL
www.securityfocus.com/bid/53911
access.redhat.com/errata/RHSA-2012:1462
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=814605
community.rapid7.com/community/metasploit/blog/2012/06/11/cve-2012-2122-a-tragically-comedic-security-flaw-in-mysql