CVE-2012-1734 : Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.23

Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.

Published 2012-07-17 22:55:02

Updated 2022-08-29 20:54:00

Source Oracle

View at NVD, CVE.org

Products affected by CVE-2012-1734

Redhat » Enterprise Linux Desktop » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Eus » Version: 6.3
cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Workstation » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
Matching versions
Oracle » Mysql
Versions from including (>=) 5.1.0 and up to, including, (<=) 5.1.62
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
Matching versions
Oracle » Mysql
Versions from including (>=) 5.5.0 and up to, including, (<=) 5.5.23
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
Matching versions
Mariadb » Mariadb
Versions from including (>=) 5.1.0 and before (<) 5.1.66
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Matching versions
Mariadb » Mariadb
Versions from including (>=) 5.5.0 and before (<) 5.5.24
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2012-1734

Top countries where our scanners detected CVE-2012-1734

Top open port discovered on systems with this issue 3306

IPs affected by CVE-2012-1734 23,381

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2012-1734!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2012-1734

EPSS FAQ

0.34%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 55 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-1734

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:N/A:P	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2012-1734

https://exchange.xforce.ibmcloud.com/vulnerabilities/77064

Oracle MySQL Server Optimizer denial of service CVE-2012-1734 Vulnerability Report
Third Party Advisory;VDB Entry
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

Oracle Critical Patch Update - July 2012
Vendor Advisory

CVEs referencing this url
http://www.securitytracker.com/id?1027263

MySQL Multiple Bugs Let Remote Authenticated Users Deny Service - SecurityTracker
Broken Link;Third Party Advisory;VDB Entry

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

mandriva.com
Broken Link

CVEs referencing this url
http://www.securityfocus.com/bid/54540

Oracle MySQL Server CVE-2012-1734 Remote Security Vulnerability
Third Party Advisory;VDB Entry
http://security.gentoo.org/glsa/glsa-201308-06.xml

MySQL: Multiple vulnerabilities (GLSA 201308-06) — Gentoo security
Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2012-1462.html

RHSA-2012:1462 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2012-1734

Products affected by CVE-2012-1734

Threat overview for CVE-2012-1734

Exploit prediction scoring system (EPSS) score for CVE-2012-1734

CVSS scores for CVE-2012-1734

References for CVE-2012-1734