CVE-2012-3523

Published: Nov 11, 2012Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.

Affected (17)

Products: Isc: Inn

Isc

1 product

Inn

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Isc Inn	Up to 2.5.2
Isc Inn	Version 1.4
Isc Inn	Version 1.4sec2
Isc Inn	Version 1.4sec
Isc Inn	Version 1.4unoff3
Isc Inn	Version 1.4unoff4
Isc Inn	Version 1.5.1
Isc Inn	Version 1.5
Isc Inn	Version 1.7.2
Isc Inn	Version 1.7
Isc Inn	Version 2.0
Isc Inn	Version 2.1
Isc Inn	Version 2.2.1
Isc Inn	Version 2.2.2
Isc Inn	Version 2.2.3
Isc Inn	Version 2.2
Isc Inn	Version 2.4.0

Related CWEs

CWE-264

References (6)

http://lists.opensuse.org/opensuse-updates/2012-09/msg00058.html

Source: secalert@redhat.com

http://secunia.com/advisories/50661

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2012:156

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-updates/2012-09/msg00058.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/50661

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2012:156

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.