CVE-2012-5611

Oracle MySQL <5.5.28 & MariaDB <5.5.28a - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-5611. PoCs published by kingcope.

AI-analyzed exploit summary This exploit demonstrates a stack-based buffer overflow in MySQL Server (CVE-2012-5611) by sending an overly long string in a GRANT statement, leading to a segmentation fault (EIP overwrite with 0x41414141). It requires authentication and targets MySQL versions 5.5.19 and below.

Description

Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command.

Exploits (1)

exploitdb WORKING POC

by kingcope · perldoslinux

https://www.exploit-db.com/exploits/23075

View Code ZIP pw:eip

This exploit demonstrates a stack-based buffer overflow in MySQL Server (CVE-2012-5611) by sending an overly long string in a GRANT statement, leading to a segmentation fault (EIP overwrite with 0x41414141). It requires authentication and targets MySQL versions 5.5.19 and below.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: MySQL Server <= 5.5.19

Auth required

Prerequisites: Valid MySQL credentials · Network access to the MySQL server

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (27)

Core 27

Core References

Third Party Advisory x_refsource_confirm

https://kb.askmonty.org/en/mariadb-5528a-release-notes/

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00001.html

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/23075

Third Party Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1703-1

Third Party Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2013:102

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00020.html

Broken Link third-party-advisory x_refsource_secunia

http://secunia.com/advisories/53372

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00013.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00000.html

Third Party Advisory x_refsource_confirm

http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2012/12/02/3

Third Party Advisory x_refsource_confirm

https://kb.askmonty.org/en/mariadb-5166-release-notes/

Third Party Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-0180.html

Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2012/Dec/4

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-201308-06.xml

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2012/12/02/4

Third Party Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-1551.html

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2012/dsa-2581

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00000.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00002.html

Broken Link third-party-advisory x_refsource_secunia

http://secunia.com/advisories/51443

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-updates/2013-09/msg00010.html

Third Party Advisory x_refsource_confirm

https://kb.askmonty.org/en/mariadb-5311-release-notes/

Third Party Advisory vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16395

Third Party Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1658-1

Third Party Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

Third Party Advisory x_refsource_confirm

https://kb.askmonty.org/en/mariadb-5213-release-notes/

Scores

EPSS 0.6665

EPSS Percentile 98.6%

Details

CWE

CWE-119

Status published

Products (46)

mariadb/mariadb 5.1.41

mariadb/mariadb 5.1.42

mariadb/mariadb 5.1.44

mariadb/mariadb 5.1.47

mariadb/mariadb 5.1.49

mariadb/mariadb 5.1.50

mariadb/mariadb 5.1.51

mariadb/mariadb 5.1.53

mariadb/mariadb 5.1.55

mariadb/mariadb 5.1.60

... and 36 more

Published Dec 03, 2012

Tracked Since Feb 18, 2026