Main Vulnerability Database Vulnerabilities #VU43182

Input validation error in mysql - CVE-2012-1702

Published: January 17, 2013 / Updated: August 11, 2020

Vulnerability identifier: #VU43182

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2012-1702

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Google

Affected software:
mysql

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier and 5.5.28 and earlier allows remote attackers to affect availability via unknown vectors.

How to mitigate CVE-2012-1702

Install update from vendor's website.

Sources

http://rhn.redhat.com/errata/RHSA-2013-0219.html
http://secunia.com/advisories/53372
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
http://www.ubuntu.com/usn/USN-1703-1
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17186

Input validation error in mysql - CVE-2012-1702

Detailed vulnerability description

How to mitigate CVE-2012-1702

Sources

Please verify you're human