CVE-2012-2749 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:S/C:N/I:N/A:P

Base Score

CVSS 3.x

EPSS Score

Percentile: 66%

Affected Products (NVD)

Vendor	Product	Version
mysql	mysql	5.1.5
mysql	mysql	5.1.23
mysql	mysql	5.1.31
mysql	mysql	5.1.32
mysql	mysql	5.1.34
mysql	mysql	5.1.37
oracle	mysql	5.1
oracle	mysql	5.1.1
oracle	mysql	5.1.2
oracle	mysql	5.1.3
oracle	mysql	5.1.4
oracle	mysql	5.1.6
oracle	mysql	5.1.7
oracle	mysql	5.1.8
oracle	mysql	5.1.9
oracle	mysql	5.1.10
oracle	mysql	5.1.11
oracle	mysql	5.1.12
oracle	mysql	5.1.13
oracle	mysql	5.1.14
oracle	mysql	5.1.15
oracle	mysql	5.1.16
oracle	mysql	5.1.17
oracle	mysql	5.1.18
oracle	mysql	5.1.19
oracle	mysql	5.1.20
oracle	mysql	5.1.21
oracle	mysql	5.1.22
oracle	mysql	5.1.23:a
oracle	mysql	5.1.24
oracle	mysql	5.1.25
oracle	mysql	5.1.26
oracle	mysql	5.1.27
oracle	mysql	5.1.28
oracle	mysql	5.1.29
oracle	mysql	5.1.30
oracle	mysql	5.1.31:sp1
oracle	mysql	5.1.33
oracle	mysql	5.1.34:sp1
oracle	mysql	5.1.35
oracle	mysql	5.1.36
oracle	mysql	5.1.37:sp1
oracle	mysql	5.1.38
oracle	mysql	5.1.39
oracle	mysql	5.1.40
oracle	mysql	5.1.40:sp1
oracle	mysql	5.1.41
oracle	mysql	5.1.42
oracle	mysql	5.1.43
oracle	mysql	5.1.43:sp1
oracle	mysql	5.1.44
oracle	mysql	5.1.45
oracle	mysql	5.1.46
oracle	mysql	5.1.46:sp1
oracle	mysql	5.1.47
oracle	mysql	5.1.48
oracle	mysql	5.1.49
oracle	mysql	5.1.49:sp1
oracle	mysql	5.1.50
oracle	mysql	5.1.51
oracle	mysql	5.1.52
oracle	mysql	5.1.52:sp1
oracle	mysql	5.1.53
oracle	mysql	5.1.54
oracle	mysql	5.1.55
oracle	mysql	5.1.56
oracle	mysql	5.1.57
oracle	mysql	5.1.58
oracle	mysql	5.1.59
oracle	mysql	5.1.60
oracle	mysql	5.1.61
oracle	mysql	5.1.62
oracle	mysql	5.5.0
oracle	mysql	5.5.1
oracle	mysql	5.5.2
oracle	mysql	5.5.3
oracle	mysql	5.5.4
oracle	mysql	5.5.5
oracle	mysql	5.5.6
oracle	mysql	5.5.7
oracle	mysql	5.5.9
oracle	mysql	5.5.10
oracle	mysql	5.5.11
oracle	mysql	5.5.12
oracle	mysql	5.5.13
oracle	mysql	5.5.14
oracle	mysql	5.5.15
oracle	mysql	5.5.16
oracle	mysql	5.5.17
oracle	mysql	5.5.18
oracle	mysql	5.5.19
oracle	mysql	5.5.20
oracle	mysql	5.5.21
oracle	mysql	5.5.22
oracle	mysql	5.5.23

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

mysql-5.1

hardy	dne
lucid	dne
natty	Fixed 5.1.63-0ubuntu0.11.04.1 released
oneiric	Fixed 5.1.63-0ubuntu0.11.10.1 released
precise	dne

mysql-5.5

hardy	dne
lucid	dne
natty	dne
oneiric	dne
precise	Fixed 5.5.24-0ubuntu0.12.04.1 released

Red Hat Enterprise Linux Releases

Red Hat Product

Release

mysql

RHEL 6

0:5.1.66-1.el6_3

fixed

mysql-bench

RHEL 6

0:5.1.66-1.el6_3

fixed

mysql-devel

RHEL 6

0:5.1.66-1.el6_3

fixed

mysql-embedded

RHEL 6

0:5.1.66-1.el6_3

fixed

mysql-embedded-devel

RHEL 6

0:5.1.66-1.el6_3

fixed

mysql-libs

RHEL 6

0:5.1.66-1.el6_3

fixed

mysql-server

RHEL 6

0:5.1.66-1.el6_3

fixed

mysql-test

RHEL 6

0:5.1.66-1.el6_3

fixed

Common Weakness Enumeration

CWE-399 -

References

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html

http://rhn.redhat.com/errata/RHSA-2012-1462.html

http://rhn.redhat.com/errata/RHSA-2013-0180.html

http://secunia.com/advisories/51309

http://secunia.com/advisories/53372

http://security.gentoo.org/glsa/glsa-201308-06.xml

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://www.securityfocus.com/bid/55120

https://bugzilla.redhat.com/show_bug.cgi?id=833737

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html

http://rhn.redhat.com/errata/RHSA-2012-1462.html

http://rhn.redhat.com/errata/RHSA-2013-0180.html

http://secunia.com/advisories/51309

http://secunia.com/advisories/53372

http://security.gentoo.org/glsa/glsa-201308-06.xml

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://www.securityfocus.com/bid/55120

https://bugzilla.redhat.com/show_bug.cgi?id=833737