Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-5667
HistoryJan 03, 2013 - 11:54 a.m.

CVE-2012-5667

2013-01-0311:54:25
CWE-189
[email protected]
web.nvd.nist.gov
3

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.8%

JSON

Multiple integer overflows in GNU Grep before 2.11 might allow context-dependent attackers to execute arbitrary code via vectors involving a long input line that triggers a heap-based buffer overflow.

Affected configurations

NVD
Node
gnugrepRange2.10
OR
gnugrepMatch2.2
OR
gnugrepMatch2.3
OR
gnugrepMatch2.4
OR
gnugrepMatch2.4.1
OR
gnugrepMatch2.4.2
OR
gnugrepMatch2.5
OR
gnugrepMatch2.5.1
OR
gnugrepMatch2.5.1a
OR
gnugrepMatch2.5.3
OR
gnugrepMatch2.5.4
OR
gnugrepMatch2.6
OR
gnugrepMatch2.6.1
OR
gnugrepMatch2.6.2
OR
gnugrepMatch2.6.3
OR
gnugrepMatch2.7
OR
gnugrepMatch2.8
OR
gnugrepMatch2.9

Related

zdt 2
prion 1
debiancve 1
gentoo 1
ubuntucve 1
ibm 4
veracode 2
nessus 8
cve 1
seebug 1
cvelist 1
packetstorm 1
openvas 4
exploitpack 1
f5 1
exploitdb 1
amazon 1
oraclelinux 1
redhat 1
centos 1
zdt
zdt
Grep <2.11 INT overflow, DoS, CMD Execution
2012-12-30 00:00:00
Grep < 2.11 Integer Overflow Crash PoC
2012-12-31 00:00:00
prion
prion
Integer overflow
2013-01-03 11:54:00
debiancve
debiancve
CVE-2012-5667
2013-01-03 11:54:25
gentoo
gentoo
grep: User-assisted execution of arbitrary code
2014-03-26 00:00:00
ubuntucve
ubuntucve
CVE-2012-5667
2013-01-03 00:00:00
ibm
ibm
Security Bulletin: Grep vulnerabilities affect IBM SmartCloud Entry (CVE-2012-5667)
2020-07-19 00:49:12
Security Bulletin: Vulnerabilities in GNU grep utility affect IBM Security Network Protection (CVE-2012-5667, and CVE-2015-1345)
2018-06-16 21:38:15
Security Bulletin: Multiple vulnerabilities in GNU grep affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance (CVE-2015-1345, CVE-2012-5667)
2018-06-17 22:32:53
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:06:47
Denial Of Service (DoS) Through Heap Out-of-Bounds (OOB) Read
2019-05-02 05:41:03
nessus
nessus
Oracle Solaris Third-Party Patch Update : grep (cve_2012_5667_heap_buffer)
2015-01-19 00:00:00
F5 Networks BIG-IP : Grep vulnerability (K69662152)
2017-06-29 00:00:00
GLSA-201403-07 : grep: User-assisted execution of arbitrary code
2014-03-27 00:00:00
cve
cve
CVE-2012-5667
2013-01-03 11:54:25
seebug
seebug
Grep < 2.11 Integer Overflow Crash PoC
2014-07-01 00:00:00
cvelist
cvelist
CVE-2012-5667
2013-01-03 11:00:00
packetstorm
packetstorm
Grep Integer Overflow
2012-12-31 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201403-07
2015-09-29 00:00:00
Oracle: Security Advisory (ELSA-2015-1447)
2015-10-06 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-598)
2015-09-25 00:00:00
exploitpack
exploitpack
Grep 2.11 - Integer Overflow Crash (PoC)
2012-12-31 00:00:00
f5
f5
K69662152 : Grep vulnerability CVE-2012-5667
2017-06-29 00:00:00
exploitdb
exploitdb
Grep &lt; 2.11 - Integer Overflow Crash (PoC)
2012-12-31 00:00:00
amazon
amazon
Low: grep
2015-09-22 10:00:00
oraclelinux
oraclelinux
grep security, bug fix, and enhancement update
2015-07-28 00:00:00
redhat
redhat
(RHSA-2015:1447) Low: grep security, bug fix, and enhancement update
2015-07-22 00:00:00
centos
centos
grep security update
2015-07-26 14:11:37

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.8%

JSON
Related for NVD:CVE-2012-5667
zdt2prion1debiancve1gentoo1ubuntucve1ibm4veracode2nessus8cve1seebug1cvelist1packetstorm1openvas4exploitpack1f51exploitdb1amazon1oraclelinux1redhat1centos1