CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:N/I:N/A:C
EPSS
Percentile
99.7%
The version of MySQL 5.5 installed on the remote host is earlier than 5.5.24 and is, therefore, affected by the following vulnerabilities :
Several errors exist related to โGIS Extensionโ, โServerโ, โInnoDBโ and โServer Optimizerโ components that can allow denial of service attacks. (CVE-2012-0540, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757)
A security bypass vulnerability exists that occurs due to improper casting during user login sessions. (Bug #64884 / CVE-2012-2122)
An error exists related to key length and sort order index that can lead to application crashes. (Bug #59387 / CVE-2012-2749)
Binary data 801157.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0540
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1734
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1735
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1756
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1757
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2122
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2749
dev.mysql.com/doc/refman/5.5/en/news-5-5-24.html
seclists.org/oss-sec/2012/q2/493