CVSS: 4.0EPSS: 0%CPEs: 145EXPL: 0CVE-2012-0484 – mysql: Unspecified vulnerability allows remote authenticated users to affect confidentiality
https://notcve.org/view.php?id=CVE-2012-0484
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL v5.0.x, v5.1.x y v5.5.x permite a usuarios remotos autenticados afectar a la confidencialidad de los datos a través de vectores desconocidos. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659687 http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html http://osvdb.org/78372 http://secunia.com/advisories/48250 http://secunia.com/advisories/53372 http://security.gentoo.org/glsa/glsa-201308-06.xml http://www.debian.org/security/2012/dsa-2429 http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html http://www.securityfocus.com/bid/51515 http://www.ubuntu.com/usn/USN-1397-1 ht •
CVSS: 4.0EPSS: 1%CPEs: 93EXPL: 0CVE-2012-0485 – mysql: Unspecified vulnerability allows remote authenticated users to affect availability
https://notcve.org/view.php?id=CVE-2012-0485
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0120, and CVE-2012-0492. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL v5.1.x y v5.5.x permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos. Se trata de una vulnerabilidad diferente a las de los CVEs: CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0120 y CVE-2012-0492. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659687 http://osvdb.org/78383 http://secunia.com/advisories/48250 http://secunia.com/advisories/53372 http://security.gentoo.org/glsa/glsa-201308-06.xml http://www.debian.org/security/2012/dsa-2429 http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html http://www.securityfocus.com/bid/51513 http://www.ubuntu.com/usn/USN-1397-1 https://exchange.xforce.ibmcloud.com/vulnerabilities/72526 https://access.re •
CVSS: 4.0EPSS: 1%CPEs: 145EXPL: 0CVE-2012-0490 – mysql: Unspecified vulnerability allows remote authenticated users to affect availability
https://notcve.org/view.php?id=CVE-2012-0490
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect availability via unknown vectors. Vulnerabilidad no especificada en componente MySQL Server de Oracle MySQL v5.0.x, v5.1.x y v5.5.x permite a usuarios remotos autenticados afectar a la disponibilidad de los datos a través de vectores desconocidos. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659687 http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html http://osvdb.org/78388 http://secunia.com/advisories/48250 http://secunia.com/advisories/53372 http://security.gentoo.org/glsa/glsa-201308-06.xml http://www.debian.org/security/2012/dsa-2429 http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html http://www.securityfocus.com/bid/51524 http://www.ubuntu.com/usn/USN-1397-1 ht •
CVSS: 2.1EPSS: 1%CPEs: 93EXPL: 0CVE-2012-0492 – mysql: Unspecified vulnerability allows remote authenticated users to affect availability
https://notcve.org/view.php?id=CVE-2012-0492
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0120, and CVE-2012-0485. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL v5.1.x y v5.5.x permite a usuarios remotos autenticados afectar a la disponibilidad de los datos a través de vectores desconocidos. Se trata de una vulnerabilidad diferente a las de los siguientes CVEs: CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0120 y CVE-2012-0485. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659687 http://osvdb.org/78393 http://secunia.com/advisories/48250 http://secunia.com/advisories/53372 http://security.gentoo.org/glsa/glsa-201308-06.xml http://www.debian.org/security/2012/dsa-2429 http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html http://www.securityfocus.com/bid/51516 http://www.ubuntu.com/usn/USN-1397-1 https://exchange.xforce.ibmcloud.com/vulnerabilities/72537 https://access.re •
CVSS: 4.0EPSS: 2%CPEs: 56EXPL: 4CVE-2010-3676 – Oracle MySQL < 5.1.49 - 'DDL' Statements Denial of Service
https://notcve.org/view.php?id=CVE-2010-3676
storage/innobase/dict/dict0crea.c in mysqld in Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (assertion failure) by modifying the (1) innodb_file_format or (2) innodb_file_per_table configuration parameters for the InnoDB storage engine, then executing a DDL statement. El archivo storage/innobase/dict/dict0crea.c en mysqld en MySQL de Oracle versiones 5.1 anteriores a 5.1.49, permite a los usuarios autenticados remotos causar una denegación de servicio (fallo de aserción) mediante la modificación de la configuración de los parámetros (1) innodb_file_format o (2) innodb_file_per_table por el motor de almacenamiento InnoDB y, a continuación, ejecutar una declaración DDL. • https://www.exploit-db.com/exploits/34522 http://bugs.mysql.com/bug.php?id=55039 http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:012 http://www.openwall.com/lists/oss-security/2010/09/28/10 http://www.securityfocus.com/bid/42643 http://www.vupen.com/english/advisories/2011/0133 https://bugzilla.redhat.com/show_bug.cgi?id=628660 https://exchange.xforce.ibmcloud.com/vulnerabilities/64689 •