CVE-2012-0492Improper Restriction of Operations within the Bounds of a Memory Buffer in Mysql

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer29 documents5 sources
Severity
7.5HIGHNVD
NVD4.0NVD3.5NVD2.1
EPSS
0.8%
top 25.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
MysqlOracle Mysql
Timeline
PublishedJan 18
Latest updateMay 13

Description

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0120, and CVE-2012-0485.

CVSS vector

AV:N/AC:H/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

NVDoracle/mysql82 versions+81
NVDmysql/mysql6 versions+5

🔴Vulnerability Details

7
GHSA
GHSA-w3hv-rp5r-hr2c: Buffer overflow in yaSSL, as used in MySQL 52022-05-13
GHSA
GHSA-966w-c6xr-3rpx: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 52022-05-04
GHSA
GHSA-r6f6-xhwq-cgg9: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 52022-05-04
GHSA
GHSA-v8rw-c9wg-62rr: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 52022-05-04
GHSA
GHSA-pch7-w9p4-36qq: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 52022-05-04

📋Vendor Advisories

8
Ubuntu
MySQL vulnerabilities2012-03-12
Red Hat
mysql: unspecified remote exploit (released with VulnDisco Pack Professional 9.17)2012-02-09
Red Hat
mysql: Unspecified vulnerability allows remote authenticated users to affect availability2012-01-18
Red Hat
mysql: Unspecified vulnerability allows remote authenticated users to affect availability2012-01-18
Red Hat
mysql: Unspecified vulnerability allows remote authenticated users to affect availability2012-01-18

💬Community

7
Bugzilla
CVE-2012-0120 mysql: Unspecified vulnerability allows remote authenticated users to affect availability2012-01-22
Bugzilla
CVE-2012-0115 mysql: Unspecified vulnerability allows remote authenticated users to affect availability2012-01-22
Bugzilla
mysql (v5.5.20): 24 various CVE flaws [fedora-all]2012-01-22
Bugzilla
CVE-2012-0492 mysql: Unspecified vulnerability allows remote authenticated users to affect availability2012-01-22
Bugzilla
CVE-2012-0485 mysql: Unspecified vulnerability allows remote authenticated users to affect availability2012-01-22
CVE-2012-0492 — Mysql vulnerability | cvebase