Description

Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command.

Remediation

References

CVE-2012-5611

Related Vulnerabilities

WordPress 5.3.x Multiple Vulnerabilities (5.3)

Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6523)

WordPress Plugin WP eCommerce 'collected_data[]' SQL Injection (3.8.4)

PHP Resource Management Errors Vulnerability (CVE-2015-8877)

WebLogic CVE-2023-21842 Vulnerability (CVE-2023-21842)

Severity

Medium

Classification

CVE-2012-5611 CWE-119

Tags

Missing Update Known Vulnerabilities