cve/CVE-2012-5627.md at b99156590a6b0c1cf0b374aa41887d37143570c8

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

Oracle MySQL and MariaDB 5.5.x before 5.5.29, 5.3.x before 5.3.12, and 5.2.x before 5.2.14 does not modify the salt during multiple executions of the change_user command within the same connection which makes it easier for remote authenticated users to conduct brute force password guessing attacks.

POC

Reference

http://seclists.org/fulldisclosure/2012/Dec/58

Github

https://github.com/Live-Hack-CVE/CVE-2012-5627

791 B Raw Blame History

CVE-2012-5627

Description

POC

Reference

Github

791 B

Raw Blame History