Published: 21/12/2012 Updated: 07/11/2023

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in yaSSL, as used in MySQL 5.5.20 and possibly other versions including 5.5.x prior to 5.5.22 and 5.1.x prior to 5.1.62, allows remote malicious users to execute arbitrary code via unspecified vectors, as demonstrated by VulnDisco Pack Professional 9.17. NOTE: as of 20120224, this disclosure has no actionable information. However, because the module author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. NOTE: due to lack of details, it is not clear whether this issue is a duplicate of CVE-2012-0492 or another CVE.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle mysql 5.5.10
oracle mysql 5.5.7
oracle mysql 5.5.3
oracle mysql 5.5.19
oracle mysql 5.5.17
oracle mysql 5.5.14
oracle mysql 5.5.16
oracle mysql 5.5.11
oracle mysql 5.5.21
oracle mysql 5.5.20
oracle mysql 5.5.2
oracle mysql 5.5.6
oracle mysql 5.5.5
oracle mysql 5.5.9
oracle mysql 5.5.18
oracle mysql 5.5.15
oracle mysql 5.5.13
oracle mysql 5.5.12
oracle mysql 5.5.1
oracle mysql 5.5.4
oracle mysql 5.5.0
oracle mysql 5.1.52
oracle mysql 5.1.59
mysql mysql 5.1.23
mysql mysql 5.1.34
oracle mysql 5.1.51
oracle mysql 5.1.60
oracle mysql 5.1.54
oracle mysql 5.1.53
oracle mysql 5.1.61
oracle mysql 5.1.55
oracle mysql 5.1.57
oracle mysql 5.1.58
mysql mysql 5.1.37
mysql mysql 5.1.31
oracle mysql 5.1.56
mysql mysql 5.1.32
mysql mysql 5.1.5
oracle mysql 5.1.39
oracle mysql 5.1.40
oracle mysql 5.1.41
oracle mysql 5.1.42
oracle mysql 5.1.43
oracle mysql 5.1.44
oracle mysql 5.1.45
oracle mysql 5.1.46
oracle mysql 5.1.47
oracle mysql 5.1.48
oracle mysql 5.1.49
oracle mysql 5.1.50
oracle mysql 5.1
oracle mysql 5.1.1
oracle mysql 5.1.2
oracle mysql 5.1.3
oracle mysql 5.1.4
oracle mysql 5.1.6
oracle mysql 5.1.7
oracle mysql 5.1.8
oracle mysql 5.1.9
oracle mysql 5.1.10
oracle mysql 5.1.11
oracle mysql 5.1.12
oracle mysql 5.1.13
oracle mysql 5.1.14
oracle mysql 5.1.15
oracle mysql 5.1.16
oracle mysql 5.1.17
oracle mysql 5.1.18
oracle mysql 5.1.19
oracle mysql 5.1.20
oracle mysql 5.1.21
oracle mysql 5.1.22
oracle mysql 5.1.24
oracle mysql 5.1.25
oracle mysql 5.1.26
oracle mysql 5.1.27
oracle mysql 5.1.28
oracle mysql 5.1.29
oracle mysql 5.1.30
oracle mysql 5.1.33
oracle mysql 5.1.35
oracle mysql 5.1.36
oracle mysql 5.1.38
oracle mysql 5.1.23
oracle mysql 5.1.31
oracle mysql 5.1.34
oracle mysql 5.1.37

Debian Bug report logs - #675872 mysql-server-51: CVE-2012-0882 - one more underspecified security problem Package: mysql-server-51; Maintainer for mysql-server-51 is (unknown); Reported by: Arne Wichmann <aw@fva-wgde> Date: Sun, 3 Jun 2012 19:36:05 UTC Severity: important Found in versions 5163-0+squeeze1, 5161 ...

CWE-119 https://lists.immunityinc.com/pipermail/canvas/2012-February/000011.html https://blogs.oracle.com/sunsecurity/entry/cve_2012_0882buffer_overflow_vulnerability https://lists.immunityinc.com/pipermail/canvas/2012-February/000014.html http://www.openwall.com/lists/oss-security/2012/02/24/2 https://bugzilla.redhat.com/show_bug.cgi?id=789141 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=675872 https://nvd.nist.gov

CVE-2012-0882

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect