CVE-2012-0698

Published: Nov 26, 2012Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

tcsd in TrouSerS before 0.3.10 allows remote attackers to cause a denial of service (daemon crash) via a crafted type_offset value in a TCP packet to port 30003.

Affected (14)

Products: Trustedcomputinggroup: Trousers

Trustedcomputinggroup

1 product

Configuration A

14 vulnerable

Vulnerable Software	Affected Versions
Trustedcomputinggroup Trousers	Up to 0.3.9
Trustedcomputinggroup Trousers	Version 0.2.8
Trustedcomputinggroup Trousers	Version 0.2.9.1
Trustedcomputinggroup Trousers	Version 0.2.9.2
Trustedcomputinggroup Trousers	Version 0.2.9
Trustedcomputinggroup Trousers	Version 0.3.0
Trustedcomputinggroup Trousers	Version 0.3.1
Trustedcomputinggroup Trousers	Version 0.3.2
Trustedcomputinggroup Trousers	Version 0.3.3
Trustedcomputinggroup Trousers	Version 0.3.4
Trustedcomputinggroup Trousers	Version 0.3.5
Trustedcomputinggroup Trousers	Version 0.3.6
Trustedcomputinggroup Trousers	Version 0.3.7
Trustedcomputinggroup Trousers	Version 0.3.8

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (22)

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649

Source: cve@mitre.org

http://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html

Source: cve@mitre.org

http://secunia.com/advisories/51295

Source: cve@mitre.org

http://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358

Source: cve@mitre.org

http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601

Source: cve@mitre.org

http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786

Source: cve@mitre.org

http://www.debian.org/security/2012/dsa-2576

Source: cve@mitre.org

http://www.exploit-db.com/exploits/22904/

Source: cve@mitre.org

Exploit

https://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of

Source: cve@mitre.org

https://bugzilla.redhat.com/show_bug.cgi?id=781648

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/80226

Source: cve@mitre.org

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649

Source: af854a3a-2127-422b-91ae-364da2661108

http://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/51295

Source: af854a3a-2127-422b-91ae-364da2661108

http://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358

Source: af854a3a-2127-422b-91ae-364da2661108

http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601

Source: af854a3a-2127-422b-91ae-364da2661108

http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2012/dsa-2576

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.exploit-db.com/exploits/22904/

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=781648

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/80226

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.