CVE-2012-2122

EUVD-2012-2124
sql/password.c in Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, and 5.6.x before 5.6.6, and MariaDB 5.1.x before 5.1.62, 5.2.x before 5.2.12, 5.3.x before 5.3.6, and 5.5.x before 5.5.23, when running in certain environments with certain implementations of the memcmp function, allows remote attackers to bypass authentication by repeatedly authenticating with the same incorrect password, which eventually causes a token comparison to succeed due to an improperly-checked return value.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.1 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
Affected Products (NVD)
VendorProductVersion
oraclemysql
5.1.51
oraclemysql
5.1.52
oraclemysql
5.1.52:sp1
oraclemysql
5.1.53
oraclemysql
5.1.54
oraclemysql
5.1.55
oraclemysql
5.1.56
oraclemysql
5.1.57
oraclemysql
5.1.58
oraclemysql
5.1.59
oraclemysql
5.1.60
oraclemysql
5.1.61
oraclemysql
5.5.10
oraclemysql
5.5.11
oraclemysql
5.5.12
oraclemysql
5.5.13
oraclemysql
5.5.14
oraclemysql
5.5.15
oraclemysql
5.5.16
oraclemysql
5.5.17
oraclemysql
5.5.18
oraclemysql
5.5.19
oraclemysql
5.5.20
oraclemysql
5.5.21
oraclemysql
5.6.2
oraclemysql
5.6.3
oraclemysql
5.6.4
oraclemysql
5.6.5
mariadbmariadb
5.1.41
mariadbmariadb
5.1.42
mariadbmariadb
5.1.44
mariadbmariadb
5.1.47
mariadbmariadb
5.1.49
mariadbmariadb
5.1.50
mariadbmariadb
5.1.51
mariadbmariadb
5.1.53
mariadbmariadb
5.1.55
mariadbmariadb
5.1.60
mariadbmariadb
5.1.61
mariadbmariadb
5.2.0
mariadbmariadb
5.2.1
mariadbmariadb
5.2.2
mariadbmariadb
5.2.3
mariadbmariadb
5.2.4
mariadbmariadb
5.2.5
mariadbmariadb
5.2.6
mariadbmariadb
5.2.7
mariadbmariadb
5.2.8
mariadbmariadb
5.2.9
mariadbmariadb
5.2.10
mariadbmariadb
5.2.11
mariadbmariadb
5.3.0
mariadbmariadb
5.3.1
mariadbmariadb
5.3.2
mariadbmariadb
5.3.3
mariadbmariadb
5.3.4
mariadbmariadb
5.3.5
mariadbmariadb
5.3.6
mariadbmariadb
5.5.20
mariadbmariadb
5.5.21
mariadbmariadb
5.5.22
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
mysql-5.1
hardy
dne
lucid
dne
natty
Fixed 5.1.63-0ubuntu0.11.04.1
released
oneiric
Fixed 5.1.63-0ubuntu0.11.10.1
released
precise
dne
mysql-5.5
hardy
dne
lucid
dne
natty
dne
oneiric
dne
precise
Fixed 5.5.24-0ubuntu0.12.04.1
released
mysql-cluster-7.0
hardy
dne
lucid
ignored
natty
ignored
oneiric
ignored
precise
dne
mysql-dfsg-5.0
hardy
Fixed 5.0.96-0ubuntu3
released
lucid
dne
natty
dne
oneiric
dne
precise
dne
mysql-dfsg-5.1
hardy
dne
lucid
Fixed 5.1.63-0ubuntu0.10.04.1
released
natty
dne
oneiric
dne
precise
dne
Common Weakness Enumeration
References
http://bugs.mysql.com/bug.php?id=64884
http://kb.askmonty.org/en/mariadb-5162-release-notes/
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html
http://seclists.org/oss-sec/2012/q2/493
http://secunia.com/advisories/49417
http://secunia.com/advisories/53372
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://securitytracker.com/id?1027143
http://www.exploit-db.com/exploits/19092
http://www.securityfocus.com/bid/53911
https://community.rapid7.com/community/metasploit/blog/2012/06/11/cve-2012-2122-a-tragically-comedic-security-flaw-in-mysql
http://bugs.mysql.com/bug.php?id=64884
http://kb.askmonty.org/en/mariadb-5162-release-notes/
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00007.html
http://seclists.org/oss-sec/2012/q2/493
http://secunia.com/advisories/49417
http://secunia.com/advisories/53372
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://securitytracker.com/id?1027143
http://www.exploit-db.com/exploits/19092
http://www.securityfocus.com/bid/53911
https://community.rapid7.com/community/metasploit/blog/2012/06/11/cve-2012-2122-a-tragically-comedic-security-flaw-in-mysql