Lucene search
HistoryJul 03, 2012 - 9:55 p.m.
CVE-2012-3368
cve-2012-3368
integer signedness error
attach.c
dtach 0.8
remote attackers
sensitive information
daemon stack memory
irc client
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
6.1 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
75.7%
Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an improper connection-close request, as demonstrated by running an IRC client in dtach.
Affected configurations
Node
redhatdtachMatch0.8
| CPE | Name | Operator | Version |
|---|---|---|---|
| redhat:dtach | redhat dtach | eq | 0.8 |
References
Related
cvelist
cvelist
CVE-2012-3368
2012-07-03 21:00:00
nvd
nvd
CVE-2012-3368
2012-07-03 21:55:01
nessus
nessus
Fedora 18 : dtach-0.8-8.fc18 (2013-2923)
2013-03-05 00:00:00
RHEL 6 : dtach (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 5 : dtach (Unpatched Vulnerability)
2024-06-03 00:00:00
openvas
openvas
Fedora Update for dtach FEDORA-2013-2923
2013-03-05 00:00:00
Fedora Update for dtach FEDORA-2013-2923
2013-03-05 00:00:00
ubuntucve
ubuntucve
CVE-2012-3368
2012-07-03 00:00:00
prion
prion
Integer overflow
2012-07-03 21:55:00
fedora
fedora
[SECURITY] Fedora 18 Update: dtach-0.8-8.fc18
2013-03-04 22:24:05
debiancve
debiancve
CVE-2012-3368
2012-07-03 21:55:01
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
6.1 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
75.7%
Related for CVE-2012-3368