CVE-2012-2102
MySQL 5.1.x < 5.1.62 and 5.5.x < 5.5.22 - Authenticated Denial of Service via HANDLER READ NEXT
Title source: llmDescription
MySQL 5.1.x before 5.1.62 and 5.5.x before 5.5.22 allows remote authenticated users to cause a denial of service (assertion failure and mysqld abort) by deleting a record and using HANDLER READ NEXT.
References (8)
Core 8
Core References
Exploit x_refsource_misc
http://eromang.zataz.com/2012/04/10/oracle-mysql-innodb-bugs-13510739-and-63775-dos-demo/
Various Sources x_refsource_confirm
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-62.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/53372
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201308-06.xml
Various Sources x_refsource_misc
http://bazaar.launchpad.net/~mysql/mysql-server/5.5/revision/3097.15.15
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/52931
Various Sources x_refsource_confirm
http://dev.mysql.com/doc/refman/5.5/en/news-5-5-22.html
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/04/13/7
Scores
EPSS
0.0209
EPSS Percentile
79.5%
Details
CWE
CWE-119
Status
published
Products (48)
mysql/mysql
5.1.5
mysql/mysql
5.1.23
mysql/mysql
5.1.31
mysql/mysql
5.1.32
mysql/mysql
5.1.34
mysql/mysql
5.1.37
oracle/mysql
5.1
oracle/mysql
5.1.1
oracle/mysql
5.1.2
oracle/mysql
5.1.3
... and 38 more
Published
Aug 17, 2012
Tracked Since
Feb 18, 2026