Main Vulnerability Database Vulnerabilities #VU43847

Input validation error in mysql - CVE-2012-1734

Published: July 18, 2012 / Updated: August 11, 2020

Vulnerability identifier: #VU43847

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2012-1734

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Google

Affected software:
mysql

Detailed vulnerability description

The vulnerability allows a remote #AU# to perform service disruption.

Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.

How to mitigate CVE-2012-1734

Install update from vendor's website.

Sources

http://osvdb.org/83979
http://rhn.redhat.com/errata/RHSA-2012-1462.html
http://secunia.com/advisories/51309
http://secunia.com/advisories/53372
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
http://www.securityfocus.com/bid/54540
http://www.securitytracker.com/id?1027263
https://exchange.xforce.ibmcloud.com/vulnerabilities/77064

Input validation error in mysql - CVE-2012-1734

Detailed vulnerability description

How to mitigate CVE-2012-1734

Sources

Please verify you're human