Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4551

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-4551
Last Modified 03 Dec 2012 12:00:00
Published 30 Nov 2012 05:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4551

Summary

Use-after-free vulnerability in libunity-webapps before 2.4.1 allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via a crafted web site, related to "certain hash tables."

Vulnerable Systems

Application

  • Ps Project Management Team Libunity-webapps 0.02

  • Ps Project Management Team Libunity-webapps 0.2.1

  • Ps Project Management Team Libunity-webapps 0.3

  • Ps Project Management Team Libunity-webapps 0.3.1

  • Ps Project Management Team Libunity-webapps 2.0

  • Ps Project Management Team Libunity-webapps 2.0.1

  • Ps Project Management Team Libunity-webapps 2.1

  • Ps Project Management Team Libunity-webapps 2.3

  • Ps Project Management Team Libunity-webapps 2.3.1

  • Ps Project Management Team Libunity-webapps 2.3.2

  • Ps Project Management Team Libunity-webapps 2.3.3

  • Ps Project Management Team Libunity-webapps 2.3.4

  • Ps Project Management Team Libunity-webapps 2.3.5

  • Ps Project Management Team Libunity-webapps 2.3.6

  • Ps Project Management Team Libunity-webapps 2.3.7

  • Ps Project Management Team Libunity-webapps 2.3.8

  • Ps Project Management Team Libunity-webapps 2.3.9

  • Ps Project Management Team Libunity-webapps 2.4.0


References

MISC - https://bugs.launchpad.net/ubuntu/%2Bsource/libunity-webapps/%2Bbug/1068495

UBUNTU - USN-1635-1

BID - 56314

MLIST - [oss-security] 20121029 Re: CVE request: use-after-free in libunity-webapps

CONFIRM - http://bazaar.launchpad.net/~webapps/libunity-webapps/trunk/revision/815


Last Updated: 27 May 2016 10:49:52