Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3291

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2012-3291
Last Modified 02 Nov 2013 11:25:21
Published 07 Jun 2012 04:55:02
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-3291

Summary

Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner.

Vulnerable Systems

Application

  • Infradead Openconnect 1.00

  • Infradead Openconnect 1.10

  • Infradead Openconnect 1.20

  • Infradead Openconnect 1.30

  • Infradead Openconnect 1.40

  • Infradead Openconnect 2.00

  • Infradead Openconnect 2.01

  • Infradead Openconnect 2.10

  • Infradead Openconnect 2.11

  • Infradead Openconnect 2.12

  • Infradead Openconnect 2.20

  • Infradead Openconnect 2.21

  • Infradead Openconnect 2.22

  • Infradead Openconnect 2.23

  • Infradead Openconnect 2.24

  • Infradead Openconnect 2.25

  • Infradead Openconnect 2.26

  • Infradead Openconnect 3.00

  • Infradead Openconnect 3.01

  • Infradead Openconnect 3.02

  • Infradead Openconnect 3.11

  • Infradead Openconnect 3.12

  • Infradead Openconnect 3.13

  • Infradead Openconnect 3.14

  • Infradead Openconnect 3.15

  • Infradead Openconnect 3.16

  • Infradead Openconnect 3.17


References

CONFIRM - http://www.infradead.org/openconnect/changelog.html

FEDORA - FEDORA-2012-6758

CONFIRM - http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/14cae65318d3ef1f7d449e463b72b6934e82f1c2

SUSE - openSUSE-SU-2013:1072


Last Updated: 27 May 2016 10:56:30