Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-3417HistoryAug 13, 2012 - 8:55 p.m.
CVE-2012-3417
2012-08-1320:55:08
Debian Security Bug Tracker
security-tracker.debian.org
8
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.005 Low
EPSS
Percentile
76.9%
The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to bypass TCP Wrappers rules in hosts.deny.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | quota | < 4.00~pre1-1 | quota_4.00~pre1-1_all.deb |
| Debian | 11 | all | quota | < 4.00~pre1-1 | quota_4.00~pre1-1_all.deb |
| Debian | 999 | all | quota | < 4.00~pre1-1 | quota_4.00~pre1-1_all.deb |
| Debian | 13 | all | quota | < 4.00~pre1-1 | quota_4.00~pre1-1_all.deb |
Related
cve
cve
CVE-2012-3417
2012-08-13 20:55:08
oraclelinux
oraclelinux
quota security and bug fix update
2013-01-11 00:00:00
redhat
redhat
(RHSA-2013:0120) Low: quota security and bug fix update
2013-01-08 00:00:00
ubuntucve
ubuntucve
CVE-2012-3417
2012-08-13 00:00:00
veracode
veracode
Authorization Bypass
2019-01-15 08:52:34
nessus
nessus
SuSE 11.2 Security Update : quota (SAT Patch Number 6724)
2013-01-25 00:00:00
SuSE 11.1 Security Update : quota (SAT Patch Number 6737)
2013-01-25 00:00:00
Scientific Linux Security Update : quota on SL5.x i386/x86_64 (20130108)
2013-01-17 00:00:00
centos
centos
quota security update
2013-01-09 19:21:22
openvas
openvas
RedHat Update for quota RHSA-2013:0120-01
2013-01-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1071-2)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1071-1)
2021-06-09 00:00:00
prion
prion
Design/Logic Flaw
2012-08-13 20:55:00
nvd
nvd
CVE-2012-3417
2012-08-13 20:55:08
cvelist
cvelist
CVE-2012-3417
2012-08-13 20:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.005 Low
EPSS
Percentile
76.9%
Related for DEBIANCVE:CVE-2012-3417