CVE-2012-0806

Published Jan 27, 2012

Last updated a month ago

CVSS info 6.5

Overview

Description: Buffer overflow in Bip 0.8.8 and earlier might allow remote authenticated users to execute arbitrary code via vectors involving a series of TCP connections that triggers use of many open file descriptors.
Source: secalert@redhat.com
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C9CD8E7-1C90-4C97-BFA1-E958F28D7205",
            "versionEndIncluding": "0.8.8"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A88F4F-DB40-45F2-BA68-5938C234EFD7"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E15DAF51-229A-4A0D-A172-97FEC5D8518D"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36B8A44C-16E6-4EFB-B258-FE6A9B06484C"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33D2832B-EC8E-4F1F-8CCF-A2D334AFCEED"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8FC3A5E-C56B-42A5-B330-B6FFFB670A18"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.7.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AEA7743-F14F-4B14-AE82-A3C93F227498"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "103DE389-B058-4BCA-8D32-B3932B337CE3"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.0:rc0:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "832D9196-6078-4692-8C99-2B812F1B7A6B"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDCBFD04-18FB-4999-93DE-DD8E770259A7"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02E8797D-D076-4A8C-9016-419F85146BE0"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "066B0061-0574-4946-BFAA-206DBC9D59DA"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16AD459B-CE0E-44B3-8359-3D30F598F78A"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECE5E182-95E5-4A8C-BD64-C383A7B74CA2"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAE02BCA-B9D4-43B4-BE90-81408E574A2F"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "470BD85F-F64E-4EF1-8130-5718193A36E1"
          },
          {
            "criteria": "cpe:2.3:a:duckcorp:bip:0.8.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "116F5B46-6653-400F-9862-80F30BC5C7BB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References