FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2012-0806

This CVE name corresponds to:

Entered Topic
2012-02-11 bip -- buffer overflow

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2012-0806 at cve.mitre.org

Details

Type Candidate
Name CVE-2012-0806
Phase Assigned(20120119)

Description

Buffer overflow in Bip 0.8.8 and earlier might allow remote authenticated users to execute arbitrary code via vectors involving a series of TCP connections that triggers use of many open file descriptors.

References

Source Reference
MLIST [oss-security] 20120124 CVE request: bip buffer overflow
MLIST [oss-security] 20120124 Re: CVE request: bip buffer overflow
CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657217
CONFIRM https://projects.duckcorp.org/issues/269
CONFIRM https://projects.duckcorp.org/projects/bip/repository/revisions/222a33cb84a2e52ad55a88900b7895bf9dd0262c
FEDORA FEDORA-2012-0916
FEDORA FEDORA-2012-0941
MANDRIVA MDVSA-2013:063
SECUNIA 47679

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.