CVE-2012-5611
Oracle MySQL <5.5.28 & MariaDB <5.5.28a - RCE
Title source: llmDescription
Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command.
Exploits (1)
References (27)
... and 7 more
Scores
EPSS
0.6665
EPSS Percentile
98.5%
Details
CWE
CWE-119
Status
published
Products (46)
mariadb/mariadb
5.1.41
mariadb/mariadb
5.1.42
mariadb/mariadb
5.1.44
mariadb/mariadb
5.1.47
mariadb/mariadb
5.1.49
mariadb/mariadb
5.1.50
mariadb/mariadb
5.1.51
mariadb/mariadb
5.1.53
mariadb/mariadb
5.1.55
mariadb/mariadb
5.1.60
... and 36 more
Published
Dec 03, 2012
Tracked Since
Feb 18, 2026