Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-6090

Опубликовано: 04 янв. 2013
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

Multiple stack-based buffer overflows in the expand function in os/pl-glob.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted filename.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:swi-prolog:swi-prolog:*:*:*:*:*:*:*:*
Версия до 6.2.4 (включая)
cpe:2.3:a:swi-prolog:swi-prolog:5.6.50:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.51:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.52:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.53:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.54:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.55:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.56:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.57:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.58:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.59:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.61:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.62:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.63:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.6.64:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.8.0:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.8.1:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.8.2:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.8.3:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.10.0:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.10.1:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.10.2:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.10.3:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.10.4:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:5.10.5:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.2.0:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.2.2:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.2.3:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:swi-prolog:swi-prolog:6.3.0:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.3.1:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.3.2:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.3.3:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.3.4:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.3.5:*:*:*:*:*:*:*
cpe:2.3:a:swi-prolog:swi-prolog:6.3.6:*:*:*:*:*:*:*

EPSS

Процентиль: 84%
0.02104
Низкий

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2012-6090

ubuntu
около 13 лет назад

Multiple stack-based buffer overflows in the expand function in os/pl-glob.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted filename.

redhat логотип

CVE-2012-6090

redhat
около 13 лет назад

Multiple stack-based buffer overflows in the expand function in os/pl-glob.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted filename.

debian логотип

CVE-2012-6090

debian
около 13 лет назад

Multiple stack-based buffer overflows in the expand function in os/pl- ...

github логотип

GHSA-g9q5-wfrj-hfmv

github
больше 3 лет назад

Multiple stack-based buffer overflows in the expand function in os/pl-glob.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted filename.

EPSS

Процентиль: 84%
0.02104
Низкий

7.5 High

CVSS2

Дефекты

CWE-119