fwknop before 2.0.3 allow remote authenticated users to cause a denial of service (server crash) or possibly execute arbitrary code.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2012/09/19/2 | Exploit Mailing List Third Party Advisory |
http://www.cipherdyne.org/blog/2012/09/software-release-fwknop-2.0.3.html | Release Notes Vendor Advisory |
http://www.openwall.com/lists/oss-security/2012/09/20/4 | Exploit Mailing List Third Party Advisory |
Configurations
Information
Published : 2020-01-09 13:15
Updated : 2020-01-10 10:33
NVD link : CVE-2012-4434
Mitre link : CVE-2012-4434
JSON object : View
CWE
CWE-276
Incorrect Default Permissions
Products Affected
cipherdyne
- fwknop