Main Vulnerability Database Vulnerabilities #VU43395

Input validation error in mysql - CVE-2012-3156

Published: October 17, 2012 / Updated: August 11, 2020

Vulnerability identifier: #VU43395

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2012-3156

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Google

Affected software:
mysql

Detailed vulnerability description

The vulnerability allows a remote #AU# to perform service disruption.

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server.

How to mitigate CVE-2012-3156

Install update from vendor's website.

Sources

http://secunia.com/advisories/51177
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
http://www.ubuntu.com/usn/USN-1621-1

Input validation error in mysql - CVE-2012-3156

Detailed vulnerability description

How to mitigate CVE-2012-3156

Sources

Please verify you're human