Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-1573

Опубликовано: 26 мар. 2012
Источник: nvd
CVSS2: 5
EPSS Средний

Описание

gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) via a crafted record, as demonstrated by a crafted GenericBlockCipher structure.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:*
Версия до 2.12.16 (включая)
cpe:2.3:a:gnu:gnutls:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.1.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.3.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.5.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.8.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.8.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.8.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.8.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.8.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.8.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.10.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.10.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.10.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.10.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.10.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.10.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.6.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.14:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:2.12.15:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:gnu:gnutls:3.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:gnutls:3.0.14:*:*:*:*:*:*:*

EPSS

Процентиль: 93%
0.10166
Средний

5 Medium

CVSS2

Дефекты

CWE-310

Связанные уязвимости

ubuntu логотип

CVE-2012-1573

ubuntu
больше 13 лет назад

gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) via a crafted record, as demonstrated by a crafted GenericBlockCipher structure.

redhat логотип

CVE-2012-1573

redhat
больше 13 лет назад

gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) via a crafted record, as demonstrated by a crafted GenericBlockCipher structure.

debian логотип

CVE-2012-1573

debian
больше 13 лет назад

gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3 ...

github логотип

GHSA-h34x-7v7j-22v5

github
больше 3 лет назад

gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) via a crafted record, as demonstrated by a crafted GenericBlockCipher structure.

oracle-oval логотип

ELSA-2012-0429

oracle-oval
больше 13 лет назад

ELSA-2012-0429: gnutls security update (IMPORTANT)

EPSS

Процентиль: 93%
0.10166
Средний

5 Medium

CVSS2

Дефекты

CWE-310