CVSS: 7.5EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3160 – mysql: unspecified vulnerability in Server Installation leading to information disclosure (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3160
16 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.65 and earlier, and 5.5.27 and earlier, allows local users to affect confidentiality via unknown vectors related to Server Installation. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.65 y anteriores, y v5.5.27 y anteriores, permite a usuarios locales a afectar la confidencialidad a través de vectores desconocidos relacionados con Server Installation. Multiple vulnerabilities have been found in MyS... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 1CVE-2012-5383 – IKE and AuthIP IPsec Keyring Modules Service (IKEEXT) - Missing DLL
https://notcve.org/view.php?id=CVE-2012-5383
11 Oct 2012 — Untrusted search path vulnerability in the installation functionality in Oracle MySQL 5.5.28, when installed in the top-level C:\ directory, might allow local users to gain privileges via a Trojan horse DLL in the "C:\MySQL\MySQL Server 5.5\bin" directory, which may be added to the PATH system environment variable by an administrator, as demonstrated by a Trojan horse wlbsctrl.dll file used by the "IKE and AuthIP IPsec Keying Modules" system service in Windows Vista SP1, Windows Server 2008 SP2, Windows 7 S... • https://www.exploit-db.com/exploits/28130 •
CVSS: 6.5EPSS: 7%CPEs: 92EXPL: 1CVE-2012-2102 – mysql: Server crash on HANDLER READ NEXT after DELETE
https://notcve.org/view.php?id=CVE-2012-2102
17 Aug 2012 — MySQL 5.1.x before 5.1.62 and 5.5.x before 5.5.22 allows remote authenticated users to cause a denial of service (assertion failure and mysqld abort) by deleting a record and using HANDLER READ NEXT. MySQL v5.1.x antes de v5.1.62 y v5.5.x antes de v5.5.22 permite a usuarios remotos autenticados provocar una denegación de servicio (error de aserción y parada no ordenada de mysqld) mediante la supresión de un registro y usando 'HANDLER READ NEXT'. Multiple vulnerabilities have been found in MySQL, allowing at... • http://bazaar.launchpad.net/~mysql/mysql-server/5.5/revision/3097.15.15 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 2%CPEs: 95EXPL: 0CVE-2012-2749 – mysql: crash caused by wrong calculation of key length for sort order index
https://notcve.org/view.php?id=CVE-2012-2749
17 Aug 2012 — MySQL 5.1.x before 5.1.63 and 5.5.x before 5.5.24 allows remote authenticated users to cause a denial of service (mysqld crash) via vectors related to incorrect calculation and a sort order index. MySQL v5.1.x antes de v5.1.63 y v5.5.x antes de v5.5.24 permite a usuarios remotos autenticados causar una denegación de servicio (por caída de mysqld) a través de vectores relacionados con un cálculo incorrecto y un índice de orden de clasificación. Multiple vulnerabilities have been found in MySQL, allowing atta... • http://dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2012-2750 – Mandriva Linux Security Advisory 2013-250
https://notcve.org/view.php?id=CVE-2012-2750
17 Aug 2012 — Unspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown impact and attack vectors related to a "Security Fix", aka Bug #59533. NOTE: this might be a duplicate of CVE-2012-1689, but as of 20120816, Oracle has not commented on this possibility. Una vulnerabilidad no especificada en MySQL v5.5.x antes de v5.5.23 tiene un impacto y vectores de ataque desconocidos relacionados con una "revisión de seguridad". Se trata de un problema también conocido como Bug #59533. NOTA: este podría ser un duplicado ... • http://dev.mysql.com/doc/refman/5.5/en/news-5-5-23.html •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2012-1757
https://notcve.org/view.php?id=CVE-2012-1757
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB. Vulnerabilidad no especificada en Oracle MySQL Server v5.5.23 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con InnoDB. • http://osvdb.org/83977 •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2012-0540 – mysql: unspecified vulnerability related to GIS extension DoS (CPU Jul 2012)
https://notcve.org/view.php?id=CVE-2012-0540
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier and 5.5.23 and earlier allows remote authenticated users to affect availability, related to GIS Extension. Vulnerabilidad no especificada en Oracle MySQL Server v5.1.62 y anteriores y v5.5.23 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad, en relación a la extensión SIG. Multiple vulnerabilities have been found in MySQL, allowing attackers to execute arbitrary code or cause Denial of Service. Versions less ... • http://osvdb.org/83976 •
CVSS: 9.1EPSS: 0%CPEs: 8EXPL: 0CVE-2012-1689 – mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Jul 2012)
https://notcve.org/view.php?id=CVE-2012-1689
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.22 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en Oracle MySQL Server v5.1.62 y anteriores, y v5.5.22 y anteriores, permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con el Optimizador de servidor. Multiple vulnerabilities have been found in MySQL, allowing attack... • http://osvdb.org/83980 •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2012-1734 – mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Jul 2012)
https://notcve.org/view.php?id=CVE-2012-1734
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en Oracle MySQL Server v5.1.62 y v5.5.23 y anteriores, permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con el Optimizador de servidor. Multiple vulnerabilities have been found in MySQL, allowing attackers to execute... • http://osvdb.org/83979 •
CVSS: 7.4EPSS: 0%CPEs: 2EXPL: 0CVE-2012-1735
https://notcve.org/view.php?id=CVE-2012-1735
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en Oracle MySQL Server v5.5.23 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con el Optimizador de servidor. • http://osvdb.org/83975 •