CVE-2012-4556

Published: Jan 4, 2013Modified: Apr 29, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

The token processing system (pki-tps) in Red Hat Certificate System (RHCS) before 8.1.3 allows remote attackers to cause a denial of service (Apache httpd web server child process restart) via certain unspecified empty search fields in a user certificate search query.

Affected (6)

Products: Redhat: Certificate System

1 product

Certificate System

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Redhat Certificate System	Up to 8.1.1
Redhat Certificate System	Version 7.1
Redhat Certificate System	Version 7.2
Redhat Certificate System	Version 7.3
Redhat Certificate System	Version 8.0
Redhat Certificate System	Version 8.1

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (10)

http://rhn.redhat.com/errata/RHSA-2012-1550.html

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/51482

Source: secalert@redhat.com

Vendor Advisory

http://www.securityfocus.com/bid/56843

Source: secalert@redhat.com

http://www.securitytracker.com/id?1027846

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=869579

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2012-1550.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/51482

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/56843

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1027846

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=869579

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.