CVE-2012-5612

Oracle MySQL <5.5.29 - Buffer Overflow

Title source: llm

Description

Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code, as demonstrated using certain variations of the (1) USE, (2) SHOW TABLES, (3) DESCRIBE, (4) SHOW FIELDS FROM, (5) SHOW COLUMNS FROM, (6) SHOW INDEX FROM, (7) CREATE TABLE, (8) DROP TABLE, (9) ALTER TABLE, (10) DELETE FROM, (11) UPDATE, and (12) SET PASSWORD commands.

Exploits (1)

exploitdb WORKING POC

by kingcope · perldoslinux

https://www.exploit-db.com/exploits/23076

View Code ZIP pw:eip

References (13)

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00000.html

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2012/Dec/5

[Not Applicable] http://secunia.com/advisories/53372

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201308-06.xml

[Exploit, Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/23076

[Broken Link] http://www.mandriva.com/security/advisories?name=MDVSA-2013:102

[Broken Link] http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2012/12/02/3

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2012/12/02/4

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html

[Third Party Advisory] http://www.ubuntu.com/usn/USN-1703-1

[Broken Link, Exploit, Patch] https://mariadb.atlassian.net/browse/MDEV-3908

[Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16960

Scores

EPSS 0.6684

EPSS Percentile 98.6%

Details

CWE

CWE-787

Status published

Products (10)

canonical/ubuntu_linux 10.04

canonical/ubuntu_linux 11.10

canonical/ubuntu_linux 12.04

canonical/ubuntu_linux 12.10

mariadb/mariadb 10.0.0

mariadb/mariadb 5.1.0 - 5.1.67

oracle/mysql 5.5.0 - 5.5.28

suse/linux_enterprise_desktop 11 sp2

suse/linux_enterprise_server 11 sp2 (2 CPE variants)

suse/linux_enterprise_software_development_kit 11 sp2

Published Dec 03, 2012

Tracked Since Feb 18, 2026