Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2147

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-2147
Last Modified 29 Jan 2013 11:50:08
Published 26 Aug 2012 05:55:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-2147

Summary

munin-cgi-graph in Munin 2.0 rc4 allows remote attackers to cause a denial of service (disk or memory consumption) via many image requests with large values in the (1) size_x or (2) size_y parameters.

Vulnerable Systems

Application

  • Munin-monitoring Munin 2.0 Rc4


References

MLIST - [oss-security] 20120429 Re: Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws

MLIST - [oss-security] 20120427 Re: Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws

MLIST - [oss-security] 20120419 Re: [Packaging] Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws

MLIST - [oss-security] 20120418 Re: Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws

MLIST - [oss-security] 20120418 Re: CVE Request (minor) -- Two Munin graphing framework flaws

MLIST - [oss-security] 20120417 RE: CVE Request (minor) -- Two Munin graphing framework flaws

MLIST - [oss-security] 20120417 Re: CVE Request (minor) -- Two Munin graphing framework flaws

XF - munin-image-requests-dos(78924)


Last Updated: 27 May 2016 11:00:18