RETIRED: MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability
BID:52154
Info
RETIRED: MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability
| Bugtraq ID: | 52154 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 23 2012 12:00AM |
| Updated: | Sep 14 2012 06:00PM |
| Credit: | Intervydis |
| Vulnerable: |
MySQL AB MySQL 5.5.20 |
| Not Vulnerable: | |
Discussion
RETIRED: MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability
MySQL is prone to an unspecified remote code-execution vulnerability.
Very few technical details are currently available. We will update this BID as more information emerges.
An attacker can leverage this issue to execute arbitrary code within the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition.
MySQL 5.5.20 is vulnerable; other versions may also be vulnerable.
NOTE: The BID is being retired because it is a duplicate of BID 51925.
MySQL is prone to an unspecified remote code-execution vulnerability.
Very few technical details are currently available. We will update this BID as more information emerges.
An attacker can leverage this issue to execute arbitrary code within the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition.
MySQL 5.5.20 is vulnerable; other versions may also be vulnerable.
NOTE: The BID is being retired because it is a duplicate of BID 51925.
Exploit / POC
RETIRED: MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability
A working exploit has been developed by Intevydis. This exploit is not otherwise publicly available or known to be circulating in the wild.
A working exploit has been developed by Intevydis. This exploit is not otherwise publicly available or known to be circulating in the wild.
Solution / Fix
RETIRED: MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
RETIRED: MySQL 5.5.20 Unspecified Remote Code Execution Vulnerability
References:
References:
- [Canvas] VulnDisco MySQL 0day (VulnDisco)
- Intevydis Homepage (Intevydis)
- MySQL Homepage (Oracle)