CVE-2012-3523
Gentoo Linux Security Advisory 201401-24
Severity Score
8.1
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.
La implementación STARTTLS en nnrpd en INN antes de v2.5.3 no restringe correctamente el búfer de E/S, lo que permite a atacantes man-in-the-middle introducir comandos en sesiones cifradas mediante el envío de un comando en texto plano que se procesa después de se establezca el TLS, relacionado con un ataque de "inyección de comando en texto claro", un problema similar a CVE-2011-0411.
A vulnerability in INN's STARTTLS implementation could allow a remote attacker to conduct a man-in-the-middle attack. Versions less than 2.5.3 are affected.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-06-14 CVE Reserved
- 2012-11-11 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/50661 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-updates/2012-09/msg00058.html | 2013-02-22 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2012:156 | 2013-02-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | <= 2.5.2 Search vendor "Isc" for product "Inn" and version " <= 2.5.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4 Search vendor "Isc" for product "Inn" and version "1.4" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4sec Search vendor "Isc" for product "Inn" and version "1.4sec" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4sec2 Search vendor "Isc" for product "Inn" and version "1.4sec2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4unoff3 Search vendor "Isc" for product "Inn" and version "1.4unoff3" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.4unoff4 Search vendor "Isc" for product "Inn" and version "1.4unoff4" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.5 Search vendor "Isc" for product "Inn" and version "1.5" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.5.1 Search vendor "Isc" for product "Inn" and version "1.5.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.7 Search vendor "Isc" for product "Inn" and version "1.7" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 1.7.2 Search vendor "Isc" for product "Inn" and version "1.7.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.0 Search vendor "Isc" for product "Inn" and version "2.0" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.1 Search vendor "Isc" for product "Inn" and version "2.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2 Search vendor "Isc" for product "Inn" and version "2.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2.1 Search vendor "Isc" for product "Inn" and version "2.2.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2.2 Search vendor "Isc" for product "Inn" and version "2.2.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.2.3 Search vendor "Isc" for product "Inn" and version "2.2.3" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Inn Search vendor "Isc" for product "Inn" | 2.4.0 Search vendor "Isc" for product "Inn" and version "2.4.0" | - |
Affected
| ||||||