mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-09-17 18:45:49 +00:00
313 lines
11 KiB
JSON
313 lines
11 KiB
JSON
{
|
|
"id": "CVE-2012-0802",
|
|
"sourceIdentifier": "secalert@redhat.com",
|
|
"published": "2012-06-19T20:55:05.113",
|
|
"lastModified": "2024-11-21T01:35:45.213",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Multiple buffer overflows in Spamdyke before 4.3.0 might allow remote attackers to execute arbitrary code via vectors related to \"serious errors in the usage of snprintf()/vsnprintf()\" in which the return values may be larger than the size of the buffer."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "M\u00faltiples desbordamientos de b\u00fafer en Spamdyke antes v4.3.0 podr\u00eda permitir a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de vectores relacionados con \"graves errores en el uso de snprintf()/vsnprintf()\" donde los valores de retorno pueden ser m\u00e1s grande que el tama\u00f1o del b\u00fafer ."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
|
|
"baseScore": 7.5,
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "PARTIAL"
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 6.4,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-119"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:*:*:*:*:*:*:*:*",
|
|
"versionEndIncluding": "4.2.1",
|
|
"matchCriteriaId": "770EBC98-148B-4CEB-99FC-0FF18E725C6D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "07A0ACF5-C979-47F9-9BEB-D6C45604F536"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.0.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "B1BAFC19-C601-46EF-8830-9B0990C0F5B3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3F28F91C-A3FB-4130-B256-550FB8A9565F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3E64D359-91C8-43AD-A20E-0789AE496CB8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9633F036-B7C1-4108-AAAB-841A67E59346"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "1127C109-252C-41F1-B6E3-F88D7AA1D95B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3683DA2F-E22A-427E-A5E1-1FDC8676FFF7"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "02D659E2-36DD-4B20-A471-AC46BE39148A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "50C05EBB-5061-49CC-B68C-ADC05A7DEF63"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5D93F2E1-ACAB-4AF5-BA35-43E88B2EB7B0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:3.1.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5745B805-3635-4C55-A4DD-420C2368B787"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "FE97EFC7-0EEC-4E5D-8591-B1BFE144E148"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.0:beta1:*:*:*:*:*:*",
|
|
"matchCriteriaId": "AD3091F2-685F-4A8C-9DD0-DF59A76D8E65"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.0:beta2:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C8A1B8B5-00DD-43CC-A794-D7E0F1C9FB07"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.0:beta3:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5D71100B-2B40-4DE7-8EB3-E8DF26A98EC8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.0:rc1:*:*:*:*:*:*",
|
|
"matchCriteriaId": "95890A97-2866-40FE-825F-4B33EEB79CBB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "61209A23-0D6B-439C-8A05-D7BD99575438"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "B0BE90AE-2AF5-4EE9-A8C5-33B8D6A8C9FC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "FE8B0A14-B443-4681-A45B-9B3EB1090D95"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A8F5D3FF-F194-4E19-935B-80DEA718E7DF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "778DA1ED-CAFC-4FDC-84D1-51F1FB602129"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.5:beta1:*:*:*:*:*:*",
|
|
"matchCriteriaId": "0D5B55DA-0FB9-4A14-9AE9-5D2B6DBC6E60"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.5:beta2:*:*:*:*:*:*",
|
|
"matchCriteriaId": "59EA0DA4-74B4-4876-A87B-0AE38D9EF205"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.5:beta3:*:*:*:*:*:*",
|
|
"matchCriteriaId": "84210085-4323-4EE6-B34B-A0419238CE9F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.5:beta4:*:*:*:*:*:*",
|
|
"matchCriteriaId": "AFC6B738-F340-48B2-A084-E5C19DFAFD6B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C5C324A7-FF32-4C7E-B195-6D3EA9B3C811"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "E130795B-BBFB-4512-A460-7694A4F889AA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "13AC9B55-7976-4744-86B8-E680B53D1DAA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.9:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "0C7AB1A8-6550-4AD8-9B80-DFD26CC44784"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.0.10:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3143C744-0EB2-4B55-B7C8-697E570FD335"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.1.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "01B03F63-BCAF-4035-A1DF-61DB5B75C4BE"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:spamdyke:spamdyke:4.2.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "16DCB642-CE54-4D57-8796-B4B3492EC9E6"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://secunia.com/advisories/47548",
|
|
"source": "secalert@redhat.com",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/48257",
|
|
"source": "secalert@redhat.com",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://security.gentoo.org/glsa/glsa-201203-01.xml",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://www.mail-archive.com/spamdyke-release%40spamdyke.org/msg00014.html",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://www.openwall.com/lists/oss-security/2012/01/23/5",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://www.osvdb.org/78351",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/51440",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://www.spamdyke.org/documentation/Changelog.txt",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/47548",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/48257",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://security.gentoo.org/glsa/glsa-201203-01.xml",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.mail-archive.com/spamdyke-release%40spamdyke.org/msg00014.html",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.openwall.com/lists/oss-security/2012/01/23/5",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.osvdb.org/78351",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/51440",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.spamdyke.org/documentation/Changelog.txt",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
}
|
|
]
|
|
} |