Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-4256HistoryOct 09, 2013 - 2:54 p.m.
CVE-2013-4256
2013-10-0914:54:00
Debian Security Bug Tracker
security-tracker.debian.org
4
0.0004 Low
EPSS
Percentile
5.2%
Multiple stack-based and heap-based buffer overflows in Network Audio System (NAS) 1.9.3 allow local users to cause a denial of service (crash) or possibly execute arbitrary code via the (1) display command argument to the ProcessCommandLine function in server/os/utils.c; (2) ResetHosts function in server/os/access.c; (3) open_unix_socket, (4) open_isc_local, (5) open_xsight_local, (6) open_att_local, or (7) open_att_svr4_local function in server/os/connection.c; the (8) AUDIOHOST environment variable to the CreateWellKnownSockets or (9) AmoebaTCPConnectorThread function in server/os/connection.c; or (10) unspecified vectors related to logging in the osLogMsg function in server/os/aulog.c.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | nas | < 1.9.3-6 | nas_1.9.3-6_all.deb |
| Debian | 11 | all | nas | < 1.9.3-6 | nas_1.9.3-6_all.deb |
| Debian | 10 | all | nas | < 1.9.3-6 | nas_1.9.3-6_all.deb |
| Debian | 999 | all | nas | < 1.9.3-6 | nas_1.9.3-6_all.deb |
| Debian | 13 | all | nas | < 1.9.3-6 | nas_1.9.3-6_all.deb |
Related
ubuntucve
ubuntucve
CVE-2013-4256
2013-08-22 00:00:00
cve
cve
CVE-2013-4256
2013-10-09 14:54:00
CVE-2013-4257
2013-10-09 14:54:00
prion
prion
Heap overflow
2013-10-09 14:54:00
Sql injection
2013-10-09 14:54:00
cvelist
cvelist
CVE-2013-4256
2013-10-09 14:44:00
openvas
openvas
Debian: Security Advisory (DSA-2771-1)
2013-10-08 00:00:00
Ubuntu: Security Advisory (USN-1986-1)
2013-10-03 00:00:00
Mageia: Security Advisory (MGASA-2013-0298)
2022-01-28 00:00:00
ubuntu
ubuntu
Network Audio System (NAS) vulnerabilities
2013-10-01 00:00:00
securityvulns
securityvulns
[USN-1986-1] Network Audio System (NAS) vulnerabilities
2013-10-02 00:00:00
Network Audio System security vulnerabilities
2013-10-12 00:00:00
[SECURITY] [DSA 2771-1] nas security update
2013-10-12 00:00:00
nessus
nessus
Ubuntu 12.04 LTS / 12.10 / 13.04 : nas vulnerabilities (USN-1986-1)
2013-10-02 00:00:00
GLSA-201406-22 : Network Audio System: Multiple vulnerabilities
2014-06-26 00:00:00
mageia
mageia
Updated nas packages fix security vulnerabilities
2013-10-10 02:32:38
gentoo
gentoo
Network Audio System: Multiple vulnerabilities
2014-06-25 00:00:00
debian
debian
[SECURITY] [DSA 2771-1] nas security update
2013-10-09 16:01:47
fedora
fedora
[SECURITY] Fedora 19 Update: nas-1.9.3-7.fc19
2013-09-27 00:33:05
[SECURITY] Fedora 20 Update: nas-1.9.3-9.fc20
2013-09-26 06:24:19
[SECURITY] Fedora 18 Update: nas-1.9.3-4.fc18
2013-09-27 00:40:24
freebsd
freebsd
nas -- multiple vulnerabilities
2013-08-07 00:00:00