CVE-2012-3523
Severity Score
6.8
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.
La implementación STARTTLS en nnrpd en INN antes de v2.5.3 no restringe correctamente el búfer de E/S, lo que permite a atacantes man-in-the-middle introducir comandos en sesiones cifradas mediante el envío de un comando en texto plano que se procesa después de se establezca el TLS, relacionado con un ataque de "inyección de comando en texto claro", un problema similar a CVE-2011-0411.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-06-14 CVE Reserved
- 2012-10-02 CVE Published
- 2023-12-06 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/50661 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-updates/2012-09/msg00058.html | 2013-02-22 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2012:156 | 2013-02-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | <= 2.5.2 Search vendor "Isc" for product "Inn" and version " <= 2.5.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4 Search vendor "Isc" for product "Inn" and version "1.4" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4sec Search vendor "Isc" for product "Inn" and version "1.4sec" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4sec2 Search vendor "Isc" for product "Inn" and version "1.4sec2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4unoff3 Search vendor "Isc" for product "Inn" and version "1.4unoff3" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4unoff4 Search vendor "Isc" for product "Inn" and version "1.4unoff4" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.5 Search vendor "Isc" for product "Inn" and version "1.5" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.5.1 Search vendor "Isc" for product "Inn" and version "1.5.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.7 Search vendor "Isc" for product "Inn" and version "1.7" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.7.2 Search vendor "Isc" for product "Inn" and version "1.7.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.0 Search vendor "Isc" for product "Inn" and version "2.0" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.1 Search vendor "Isc" for product "Inn" and version "2.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2 Search vendor "Isc" for product "Inn" and version "2.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2.1 Search vendor "Isc" for product "Inn" and version "2.2.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2.2 Search vendor "Isc" for product "Inn" and version "2.2.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2.3 Search vendor "Isc" for product "Inn" and version "2.2.3" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.4.0 Search vendor "Isc" for product "Inn" and version "2.4.0" | - |
Affected
| ||||||