Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4555

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2012-4555
Last Modified 07 Jan 2013 10:41:31
Published 04 Jan 2013 05:55:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2012-4555

Summary

The token processing system (pki-tps) in Red Hat Certificate System (RHCS) before 8.1.3 does not properly handle interruptions of token format operations, which allows remote attackers to cause a denial of service (NULL pointer dereference and Apache httpd web server child process crash) via unspecified vectors.

Vulnerable Systems

Application

  • Redhat Certificate System 7.1

  • Redhat Certificate System 7.2

  • Redhat Certificate System 7.3

  • Redhat Certificate System 8

  • Redhat Certificate System 8.0

  • Redhat Certificate System 8.1

  • Redhat Certificate System 8.1.1


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=869570

SECTRACK - 1027846

BID - 56843

SECUNIA - 51482

REDHAT - RHSA-2012:1550


Last Updated: 27 May 2016 10:47:23