cve/CVE-2012-5611.md at f0ac04d7677853df048666db730bdfce74d87780

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command.

POC

Reference

http://seclists.org/fulldisclosure/2012/Dec/4
http://www.exploit-db.com/exploits/23075
http://www.openwall.com/lists/oss-security/2012/12/02/3
http://www.openwall.com/lists/oss-security/2012/12/02/4
http://www.ubuntu.com/usn/USN-1703-1

Github

https://github.com/fkie-cad/nvd-json-data-feeds

1.0 KiB Raw Blame History

CVE-2012-5611

Description

POC

Reference

Github

1.0 KiB

Raw Blame History