Multiple vulnerabilities in MySQL

Posted: December 5, 2012 in Vulnerabilities
Tags: , , ,

MySql

Multiple vulnerabilities

Vulnerability: Multiple vulnerabilities in MySQL

Danger: High
Number of vulnerabilities: 4
CVE ID:

– CVE-2012-5611
– CVE-2012-5612
– CVE-2012-5614
– CVE-2012-5615

Vector of operation: LAN
Impact: Brute-force attack, Denial of service, System compromise

Affected products: MySQL 5.x

Affected versions: MySQL 5.x, perhaps the only one.

Description:

The vulnerability allows a remote user to execute arbitrary code on the target system.

1. An error in the processing of the database name in the function definition when checking access rights. This can be exploited to cause a buffer overflow in the stack, and compromise a vulnerable system.

2. The vulnerability is caused due to the failure to remove the table. This can be exploited to cause a heap overflow and potentially execute arbitrary code.

3. An error when handling the COM_BINLOG_DUMP. This can be exploited to crash the daemon.

4. An error in the processing of authentication errors. A remote user can access the list of legitimate user accounts.

Manufacturer URL: http://www.mysql.com/

Solution: The way to eliminate the vulnerability does not exist at present.

Links:

http://archives.neohapsis.com/archives/fulldisclosure/2012-12/0005.html
http://archives.neohapsis.com/archives/fulldisclosure/2012-12/0006.html
http://archives.neohapsis.com/archives/fulldisclosure/2012-12/0008.html
http://archives.neohapsis.com/archives/fulldisclosure/2012-12/0010.html

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s