Lucene search

[email protected]CVE-2011-4620

HistoryDec 31, 2011 - 1:55 a.m.

CVE-2011-4620

2011-12-3101:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-4620

buffer overflow

ulseterror

plib

torcs

remote code execution

security vulnerability

7.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.305 Low

EPSS

Percentile

97.0%

JSON

Buffer overflow in the ulSetError function in util/ulError.cxx in PLIB 1.8.5, as used in TORCS 1.3.1 and other products, allows user-assisted remote attackers to execute arbitrary code via vectors involving a long error message, as demonstrated by a crafted acc file for TORCS. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
steve_j_baker:plibsteve j baker plibeq1.8.5

CPE	Name	Operator	Version
steve_j_baker:plib	steve j baker plib	eq	1.8.5

References

lists.opensuse.org/opensuse-security-announce/2012-11/msg00013.html

lists.opensuse.org/opensuse-security-announce/2013-01/msg00015.html

openwall.com/lists/oss-security/2011/12/21/2

osvdb.org/77973

secunia.com/advisories/47297

secunia.com/advisories/51340

www.exploit-db.com/exploits/18258/

security.gentoo.org/glsa/201606-16

7.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.305 Low

EPSS

Percentile

97.0%

JSON

Related for CVE-2011-4620

nessus7 debian1 freebsd2 openvas12 prion1 fedora3 securityvulns2 cvelist1 debiancve1 gentoo1 ubuntucve1 suse2