Info

Disclosure

Jul 17, 2012

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Jul 17, 2012

Description

Oracle MySQL Server contains an unspecified flaw related to the InnoDB subcomponent that may allow an authenticated remote attacker to cause a denial of service. No further details have been provided.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: Vendor Verified, Coordinated Disclosure
OSVDB: Authentication Required

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch to address this vulnerability. Check the vendor advisory in the references section.

Products

Oracle Corporation

MySQL Server

5.5.23

References

Security Tracker: 1027263
CVE ID: 2012-1757 (see also: NVD)
Secunia Advisory ID: 49957
Related OSVDB ID: 83975 83976 83978 83979 83980
Vendor Specific Advisory URL: http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/83977