CVE-2012-1705 — Oracle Mysql vulnerability

5 documents5 sources

Severity

4.0MEDIUMNVD

EPSS

0.6%

top 29.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mariadb Oracle Mysql Canonical Ubuntu Linux +4 more

Timeline

PublishedJan 17

Latest updateMay 13

Description

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier and 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages5 packages

▶NVDoracle/mysql5.1.0 — 5.1.66+1

▶NVDredhat/enterprise_linux_server6.0

▶NVDmariadb/mariadb5.1.0 — 5.1.67+4

▶NVDredhat/enterprise_linux_desktop6.0

▶NVDredhat/enterprise_linux_workstation6.0

Also affects: Ubuntu Linux 10.04, 11.10, 12.04, 12.10, Enterprise Linux 6.3

🔴Vulnerability Details

GHSA

GHSA-rp3j-8862-973w: Unspecified vulnerability in the Server component in Oracle MySQL 5↗2022-05-13

▶

📋Vendor Advisories

Ubuntu

MySQL vulnerabilities↗2013-01-22

▶

Red Hat

mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Jan 2013)↗2013-01-15

▶

💬Community

Bugzilla

CVE-2012-1705 mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Jan 2013)↗2013-01-16

▶