CVE-2012-5615 security bug

Bug #1171941 reported by Martin Arrieta on 2013-04-23
256
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Percona Server
Status tracked in 5.6
5.1
High
Sergei Glushchenko
5.5
High
Sergei Glushchenko
5.6
High
Sergei Glushchenko

Bug Description

During the initial handshake, the server replies immediately to the incorrect user name with "Access denied". But if the user name is correct, but the authentication mechanism is not - like a short scramble, when a long one is needed, or a plugin should be used - the server might reply "try different auth plugin (or scamble length)".
This allows to detect what user accounts exists in the server.

Tested on 5.5.30-30.2 Percona Server (GPL), Release rel30.2, Revision 508

[root@textbox ~]# perl mysql_userenum.pl localhost wordlist
[*] HIT! -- USER EXISTS: pepe@localhost

More information:

http://seclists.org/fulldisclosure/2012/Dec/9
https://mariadb.atlassian.net/browse/MDEV-3909 <---- Fixed

Related branches

lp:~sergei.glushchenko/percona-server/CVE-2012-5627-bug1172090-5.6
Merged into lp:percona-server at revision 344
Laurynas Biveinis: Approve on 2013-05-02
lp:~sergei.glushchenko/percona-server/CVE-2012-5627-bug1172090-5.5
Merged into lp:percona-server/5.5 at revision 514
Laurynas Biveinis: Approve on 2013-05-02

CVE References

information type: Private Security → Public
tags: added: security

Oracle fix in 5.5.39 ?

$ bzr log -r 4676
------------------------------------------------------------
revno: 4676
tags: clone-5.5.39-build
committer: Venkata Sidagam <email address hidden>
branch nick: 5.5
timestamp: Mon 2014-06-30 19:24:25 +0530
message:
  Bug #17357528 BACKPORT BUG#16513435 TO 5.5 AND 5.6

  Description: Backporting BUG#16513435 to 5.5 and 5.6
  This is a fix for REMOTE PREAUTH USER ENUMERATION FLAW bug

information type: Public → Public Security
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers