Lucene search

K
cveRedhatCVE-2012-4423
HistoryNov 19, 2012 - 12:10 p.m.

CVE-2012-4423

2012-11-1912:10:52
redhat
web.nvd.nist.gov
47
nvd
cve-2012-4423
libvirt
remote attack
denial of service
null pointer dereference
segmentation fault
rpc call
rpc dispatch table

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.13

Percentile

95.5%

The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and segmentation fault) via an RPC call with (1) an event as the RPC number or (2) an RPC number whose value is in a “gap” in the RPC dispatch table.

Affected configurations

Nvd
Node
redhatlibvirtRange0.10.1
OR
redhatlibvirtMatch0.0.1
OR
redhatlibvirtMatch0.0.2
OR
redhatlibvirtMatch0.0.3
OR
redhatlibvirtMatch0.0.4
OR
redhatlibvirtMatch0.0.5
OR
redhatlibvirtMatch0.0.6
OR
redhatlibvirtMatch0.1.0
OR
redhatlibvirtMatch0.1.1
OR
redhatlibvirtMatch0.1.3
OR
redhatlibvirtMatch0.1.4
OR
redhatlibvirtMatch0.1.5
OR
redhatlibvirtMatch0.1.6
OR
redhatlibvirtMatch0.1.7
OR
redhatlibvirtMatch0.1.8
OR
redhatlibvirtMatch0.1.9
OR
redhatlibvirtMatch0.2.0
OR
redhatlibvirtMatch0.2.1
OR
redhatlibvirtMatch0.2.2
OR
redhatlibvirtMatch0.2.3
OR
redhatlibvirtMatch0.3.0
OR
redhatlibvirtMatch0.3.1
OR
redhatlibvirtMatch0.3.2
OR
redhatlibvirtMatch0.3.3
OR
redhatlibvirtMatch0.4.0
OR
redhatlibvirtMatch0.4.1
OR
redhatlibvirtMatch0.4.2
OR
redhatlibvirtMatch0.4.3
OR
redhatlibvirtMatch0.4.4
OR
redhatlibvirtMatch0.4.5
OR
redhatlibvirtMatch0.4.6
OR
redhatlibvirtMatch0.5.0
OR
redhatlibvirtMatch0.5.1
OR
redhatlibvirtMatch0.6.0
OR
redhatlibvirtMatch0.6.1
OR
redhatlibvirtMatch0.6.2
OR
redhatlibvirtMatch0.6.3
OR
redhatlibvirtMatch0.6.4
OR
redhatlibvirtMatch0.6.5
OR
redhatlibvirtMatch0.7.0
OR
redhatlibvirtMatch0.7.1
OR
redhatlibvirtMatch0.7.2
OR
redhatlibvirtMatch0.7.3
OR
redhatlibvirtMatch0.7.4
OR
redhatlibvirtMatch0.7.5
OR
redhatlibvirtMatch0.7.6
OR
redhatlibvirtMatch0.7.7
OR
redhatlibvirtMatch0.8.0
OR
redhatlibvirtMatch0.8.1
OR
redhatlibvirtMatch0.8.2
OR
redhatlibvirtMatch0.8.3
OR
redhatlibvirtMatch0.8.4
OR
redhatlibvirtMatch0.8.5
OR
redhatlibvirtMatch0.8.6
OR
redhatlibvirtMatch0.8.7
OR
redhatlibvirtMatch0.8.8
OR
redhatlibvirtMatch0.9.0
OR
redhatlibvirtMatch0.9.1
OR
redhatlibvirtMatch0.9.2
OR
redhatlibvirtMatch0.9.3
OR
redhatlibvirtMatch0.9.4
OR
redhatlibvirtMatch0.9.5
OR
redhatlibvirtMatch0.9.6
OR
redhatlibvirtMatch0.9.7
OR
redhatlibvirtMatch0.9.8
OR
redhatlibvirtMatch0.9.9
OR
redhatlibvirtMatch0.9.10
OR
redhatlibvirtMatch0.9.11
OR
redhatlibvirtMatch0.9.12
OR
redhatlibvirtMatch0.9.13
OR
redhatlibvirtMatch0.10.0
VendorProductVersionCPE
redhatlibvirt*cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*
redhatlibvirt0.0.1cpe:2.3:a:redhat:libvirt:0.0.1:*:*:*:*:*:*:*
redhatlibvirt0.0.2cpe:2.3:a:redhat:libvirt:0.0.2:*:*:*:*:*:*:*
redhatlibvirt0.0.3cpe:2.3:a:redhat:libvirt:0.0.3:*:*:*:*:*:*:*
redhatlibvirt0.0.4cpe:2.3:a:redhat:libvirt:0.0.4:*:*:*:*:*:*:*
redhatlibvirt0.0.5cpe:2.3:a:redhat:libvirt:0.0.5:*:*:*:*:*:*:*
redhatlibvirt0.0.6cpe:2.3:a:redhat:libvirt:0.0.6:*:*:*:*:*:*:*
redhatlibvirt0.1.0cpe:2.3:a:redhat:libvirt:0.1.0:*:*:*:*:*:*:*
redhatlibvirt0.1.1cpe:2.3:a:redhat:libvirt:0.1.1:*:*:*:*:*:*:*
redhatlibvirt0.1.3cpe:2.3:a:redhat:libvirt:0.1.3:*:*:*:*:*:*:*
Rows per page:
1-10 of 711

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.13

Percentile

95.5%