CVE-2012-3368

Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an improper connection-close request, as demonstrated by running an IRC client in dtach.

CVSS v2.0 2.6 LOW

2.6^/10

CVSS v2.0 : LOW

Vector : AV:N/AC:H/Au:N/C:P/I:N/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://sourceforge.net/tracker/?func=detail&aid=3517812&group_id=36489&atid=417357	Exploit
https://bugzilla.redhat.com/show_bug.cgi?id=812551	Exploit
http://sourceforge.net/tracker/download.php?group_id=36489&atid=417357&file_id=441195&aid=3517812	Patch
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=625302
https://bugzilla.redhat.com/show_bug.cgi?id=835849

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:redhat:dtach:0.8:*:*:*:*:*:*:*

Information

Published : 2012-07-03 14:55

Updated : 2012-07-03 21:00

NVD link : CVE-2012-3368

Mitre link : CVE-2012-3368

JSON object : View

CWE

CWE-189

Numeric Errors

Advertisement

Products Affected

redhat

dtach

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://sourceforge.net/tracker/?func=detail&aid=3517812&group_id=36489&atid=417357", "name": "http://sourceforge.net/tracker/?func=detail&aid=3517812&group_id=36489&atid=417357", "tags": ["Exploit"], "refsource": "CONFIRM"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=812551", "name": "https://bugzilla.redhat.com/show_bug.cgi?id=812551", "tags": ["Exploit"], "refsource": "CONFIRM"}, {"url": "http://sourceforge.net/tracker/download.php?group_id=36489&atid=417357&file_id=441195&aid=3517812", "name": "http://sourceforge.net/tracker/download.php?group_id=36489&atid=417357&file_id=441195&aid=3517812", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=625302", "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=625302", "tags": [], "refsource": "CONFIRM"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=835849", "name": "https://bugzilla.redhat.com/show_bug.cgi?id=835849", "tags": [], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an improper connection-close request, as demonstrated by running an IRC client in dtach."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-189"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2012-3368", "ASSIGNER": "secalert@redhat.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 2.6, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "LOW", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2012-07-03T21:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:redhat:dtach:0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2012-07-04T04:00Z"}