CVE-2012-2122

sql/password.c in Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, and 5.6.x before 5.6.6, and MariaDB 5.1.x before 5.1.62, 5.2.x before 5.2.12, 5.3.x before 5.3.6, and 5.5.x before 5.5.23, when running in certain environments with certain implementations of the memcmp function, allows remote attackers to bypass authentication by repeatedly authenticating with the same incorrect password, which eventually causes a token comparison to succeed due to an improperly-checked return value.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.1 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:P/I:P/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
VendorProductVersion
oraclemysql
5.1.51
oraclemysql
5.1.52
oraclemysql
5.1.52:sp1
oraclemysql
5.1.53
oraclemysql
5.1.54
oraclemysql
5.1.55
oraclemysql
5.1.56
oraclemysql
5.1.57
oraclemysql
5.1.58
oraclemysql
5.1.59
oraclemysql
5.1.60
oraclemysql
5.1.61
oraclemysql
5.5.10
oraclemysql
5.5.11
oraclemysql
5.5.12
oraclemysql
5.5.13
oraclemysql
5.5.14
oraclemysql
5.5.15
oraclemysql
5.5.16
oraclemysql
5.5.17
oraclemysql
5.5.18
oraclemysql
5.5.19
oraclemysql
5.5.20
oraclemysql
5.5.21
oraclemysql
5.6.2
oraclemysql
5.6.3
oraclemysql
5.6.4
oraclemysql
5.6.5
mariadbmariadb
5.1.41
mariadbmariadb
5.1.42
mariadbmariadb
5.1.44
mariadbmariadb
5.1.47
mariadbmariadb
5.1.49
mariadbmariadb
5.1.50
mariadbmariadb
5.1.51
mariadbmariadb
5.1.53
mariadbmariadb
5.1.55
mariadbmariadb
5.1.60
mariadbmariadb
5.1.61
mariadbmariadb
5.2.0
mariadbmariadb
5.2.1
mariadbmariadb
5.2.2
mariadbmariadb
5.2.3
mariadbmariadb
5.2.4
mariadbmariadb
5.2.5
mariadbmariadb
5.2.6
mariadbmariadb
5.2.7
mariadbmariadb
5.2.8
mariadbmariadb
5.2.9
mariadbmariadb
5.2.10
mariadbmariadb
5.2.11
mariadbmariadb
5.3.0
mariadbmariadb
5.3.1
mariadbmariadb
5.3.2
mariadbmariadb
5.3.3
mariadbmariadb
5.3.4
mariadbmariadb
5.3.5
mariadbmariadb
5.3.6
mariadbmariadb
5.5.20
mariadbmariadb
5.5.21
mariadbmariadb
5.5.22
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
mysql-5.1
precise
dne
oneiric
Fixed 5.1.63-0ubuntu0.11.10.1
released
natty
Fixed 5.1.63-0ubuntu0.11.04.1
released
lucid
dne
hardy
dne
mysql-5.5
precise
Fixed 5.5.24-0ubuntu0.12.04.1
released
oneiric
dne
natty
dne
lucid
dne
hardy
dne
mysql-cluster-7.0
precise
dne
oneiric
ignored
natty
ignored
lucid
ignored
hardy
dne
mysql-dfsg-5.0
precise
dne
oneiric
dne
natty
dne
lucid
dne
hardy
Fixed 5.0.96-0ubuntu3
released
mysql-dfsg-5.1
precise
dne
oneiric
dne
natty
dne
lucid
Fixed 5.1.63-0ubuntu0.10.04.1
released
hardy
dne
Common Weakness Enumeration
References
http://bugs.mysql.com/bug.php?id=64884
http://kb.askmonty.org/en/mariadb-5162-release-notes/
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html
http://seclists.org/oss-sec/2012/q2/493
http://secunia.com/advisories/49417
http://secunia.com/advisories/53372
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://securitytracker.com/id?1027143
http://www.exploit-db.com/exploits/19092
http://www.securityfocus.com/bid/53911
https://community.rapid7.com/community/metasploit/blog/2012/06/11/cve-2012-2122-a-tragically-comedic-security-flaw-in-mysql
http://bugs.mysql.com/bug.php?id=64884
http://kb.askmonty.org/en/mariadb-5162-release-notes/
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html
http://seclists.org/oss-sec/2012/q2/493
http://secunia.com/advisories/49417
http://secunia.com/advisories/53372
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://securitytracker.com/id?1027143
http://www.exploit-db.com/exploits/19092
http://www.securityfocus.com/bid/53911
https://community.rapid7.com/community/metasploit/blog/2012/06/11/cve-2012-2122-a-tragically-comedic-security-flaw-in-mysql