Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-3509
HistorySep 05, 2012 - 11:55 p.m.

CVE-2012-3509

2012-09-0523:55:01
CWE-189
[email protected]
web.nvd.nist.gov
31
cve-2012-3509
integer overflow
gnu libiberty
denial of service
heap-based buffer overflow
nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

8.8 High

AI Score

Confidence

High

0.023 Low

EPSS

Percentile

89.8%

JSON

Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service (crash) via vectors related to the “addition of CHUNK_HEADER_SIZE to the length,” which triggers a heap-based buffer overflow.

Affected configurations

NVD
Node
gnubinutilsMatch2.22
OR
gnulibibertyMatch-
Node
canonicalubuntu_linuxMatch10.04lts
OR
canonicalubuntu_linuxMatch12.04lts
OR
canonicalubuntu_linuxMatch14.04lts
OR
canonicalubuntu_linuxMatch14.10
Node
debiandebian_linuxMatch7.0

Related

nessus 10
openvas 11
fedora 7
ubuntucve 1
cvelist 1
debian 1
prion 1
mageia 1
osv 1
nvd 1
debiancve 1
ubuntu 1
nessus
nessus
Fedora 17 : insight-7.4.50-4.20120403cvs.fc17 (2012-18311)
2012-11-26 00:00:00
Fedora 19 : sdcc-3.3.0-1.fc19 (2014-8528)
2014-08-04 00:00:00
Debian DLA-324-1 : binutils security update
2015-10-02 00:00:00
openvas
openvas
Fedora Update for sdcc FEDORA-2014-8528
2014-08-05 00:00:00
Fedora Update for insight FEDORA-2012-18300
2012-11-26 00:00:00
Fedora Update for insight FEDORA-2012-18300
2012-11-26 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: insight-7.4.50-4.20120403cvs.fc17
2012-11-24 03:33:49
[SECURITY] Fedora 19 Update: sdcc-3.3.0-1.fc19
2014-08-01 06:05:16
[SECURITY] Fedora 16 Update: insight-7.4.50-4.20120403cvs.fc16
2012-11-24 03:32:00
ubuntucve
ubuntucve
CVE-2012-3509
2012-09-05 00:00:00
cvelist
cvelist
CVE-2012-3509
2012-09-05 23:00:00
debian
debian
[SECURITY] [DLA 324-1] binutils security update
2015-10-02 02:02:41
prion
prion
Integer overflow
2012-09-05 23:55:00
mageia
mageia
Updated sdcc packages fix a security vulnerability
2014-08-22 14:58:14
osv
osv
binutils - security update
2015-10-02 00:00:00
nvd
nvd
CVE-2012-3509
2012-09-05 23:55:01
debiancve
debiancve
CVE-2012-3509
2012-09-05 23:55:01
ubuntu
ubuntu
GNU binutils vulnerabilities
2015-02-09 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

8.8 High

AI Score

Confidence

High

0.023 Low

EPSS

Percentile

89.8%

JSON
Related for CVE-2012-3509
nessus10openvas11fedora7ubuntucve1cvelist1debian1prion1mageia1osv1nvd1debiancve1ubuntu1