CVE-2012-0862

🗓️ 04 Jun 2012 20:02:55Reported by redhatType

cve🔗 web.nvd.nist.gov👁 60 Views🌐 WEB

Xinetd before 2.3.15 builtins.c vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 55
OpenVAS	FreeBSD Ports: xinetd	22 Oct 201200:00	–	openvas
OpenVAS	RedHat Update for xinetd RHSA-2013:1302-01	3 Oct 201300:00	–	openvas
OpenVAS	CentOS Update for xinetd CESA-2013:0499 centos6	12 Mar 201300:00	–	openvas
OpenVAS	RedHat Update for xinetd RHSA-2013:0499-02	22 Feb 201300:00	–	openvas
OpenVAS	Fedora Update for xinetd FEDORA-2012-8061	1 Jun 201200:00	–	openvas
OpenVAS	Fedora Update for xinetd FEDORA-2012-8041	1 Jun 201200:00	–	openvas
OpenVAS	CentOS Update for xinetd CESA-2013:0499 centos6	12 Mar 201300:00	–	openvas
OpenVAS	Mandriva Update for xinetd MDVSA-2012:155-1 (xinetd)	3 Oct 201200:00	–	openvas
OpenVAS	Fedora Update for xinetd FEDORA-2012-8061	1 Jun 201200:00	–	openvas
OpenVAS	Oracle: Security Advisory (ELSA-2013-0499)	6 Oct 201500:00	–	openvas

Nvd

Node

xinetd xinetdRange≤2.3.14

xinetd xinetdMatch2.3.5

xinetd xinetdMatch2.3.6

xinetd xinetdMatch2.3.7

xinetd xinetdMatch2.3.8

xinetd xinetdMatch2.3.9

xinetd xinetdMatch2.3.10

xinetd xinetdMatch2.3.11

xinetd xinetdMatch2.3.12

xinetd xinetdMatch2.3.13

Source	Link
securitytracker	www.securitytracker.com/id
openwall	www.openwall.com/lists/oss-security/2012/05/09/5
mandriva	www.mandriva.com/security/advisories
lists	www.lists.fedoraproject.org/pipermail/package-announce/2012-May/081428.html
lists	www.lists.fedoraproject.org/pipermail/package-announce/2012-May/081446.html
securityfocus	www.securityfocus.com/bid/53720
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/75965
openwall	www.openwall.com/lists/oss-security/2012/05/10/2
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
rhn	www.rhn.redhat.com/errata/RHSA-2013-1302.html

Parameter	Position	Path	Description	CWE
service type	query param	/tcpmux	Xinetd allows bypassing access restrictions through tcpmux service enabling exposure of all services.	CWE-20

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Jun 2012 20:55Current

6.3Medium risk

Vulners AI Score6.3

CVSS24.3

EPSS0.00726

CWE-20