Computer Security
[EN] securityvulns.ru
no-pyccku

  

CVECVE-2012-1182
StatusCandidate
DescriptionThe RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Severity
High
CVSS score10
CVSS vector(AV:N/AC:L/Au:N/C:C/I:C/A:C)
PhaseAssigned (29.01.2013)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1182
ReferencesSECUNIA : 48999
 APPLE : APPLE-SA-2012-05-09-1
 FEDORA : FEDORA-2012-6382
 CONFIRM : http://support.apple.com/kb/HT5281
 CONFIRM : http://www.collax.com/produkte/AllinOne-server-for...
 CONFIRM : https://www.samba.org/samba/security/CVE-2012-1182
 UBUNTU : USN-1423-1
SecurityVulns:Apple Mac OS X multiple security vulnerabilities
 Samba array index overflow
 HP Server Automation code execution
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 



Rating@Mail.ru