cvelistv5 - cve-2012-2978

cve-2012-2978

Vulnerability from cvelistv5

Published

2012-07-27 10:00

Modified

2024-08-06 19:50

Severity ?

Summary

query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.

References

URL	Tags
cret@cert.org	http://osvdb.org/84097
cret@cert.org	http://secunia.com/advisories/49795
cret@cert.org	http://secunia.com/advisories/49997
cret@cert.org	http://www.debian.org/security/2012/dsa-2515
cret@cert.org	http://www.kb.cert.org/vuls/id/624931	US Government Resource
cret@cert.org	http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt	Vendor Advisory
cret@cert.org	http://www.securityfocus.com/bid/54606
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/84097
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/49795
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/49997
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2012/dsa-2515
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/624931	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/54606

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T19:50:05.440Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "84097",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/84097"
          },
          {
            "name": "VU#624931",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/624931"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
          },
          {
            "name": "54606",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/54606"
          },
          {
            "name": "49795",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/49795"
          },
          {
            "name": "49997",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/49997"
          },
          {
            "name": "DSA-2515",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2012/dsa-2515"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-07-20T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-12-21T17:57:01",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "84097",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/84097"
        },
        {
          "name": "VU#624931",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/624931"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
        },
        {
          "name": "54606",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/54606"
        },
        {
          "name": "49795",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/49795"
        },
        {
          "name": "49997",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/49997"
        },
        {
          "name": "DSA-2515",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2012/dsa-2515"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2012-2978",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "84097",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/84097"
            },
            {
              "name": "VU#624931",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/624931"
            },
            {
              "name": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt",
              "refsource": "CONFIRM",
              "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
            },
            {
              "name": "54606",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/54606"
            },
            {
              "name": "49795",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/49795"
            },
            {
              "name": "49997",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/49997"
            },
            {
              "name": "DSA-2515",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2012/dsa-2515"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2012-2978",
    "datePublished": "2012-07-27T10:00:00",
    "dateReserved": "2012-05-30T00:00:00",
    "dateUpdated": "2024-08-06T19:50:05.440Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E347F8C-AB1F-4967-9C85-055214798ECE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3DEDA235-5B80-4816-86C5-C83A45878A3E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"22BC2EBF-9241-4FE1-A730-9F9BB6E2777C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3180CAA2-1518-4750-98DE-F64821297034\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"56BCFAEA-AC1F-4D3E-B473-A6081D423BEB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CEA25A60-DD5F-4FE8-A6CC-1695232E3D95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C326A66B-457E-4130-A214-ED265576F448\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"140464BA-39D7-4B63-92F9-9D6E09CFF6DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.0.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E86C924A-6CD8-4D9A-8CFC-E4AD4CC9331E\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A818B06C-8798-460D-AE5A-93162CB758A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3755E217-23CB-42EF-90E8-020D5796226B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F341E55C-DB91-4D7B-91AE-076525C52A1F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"760CF611-A8BF-4E96-9F21-0796FBC8A521\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E5A52D5D-F34E-4148-A1B5-41668CAF4370\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BC6AED26-55BB-449E-815E-532C0DD24B26\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"608E8EA7-9875-42E7-B8A4-9CE5EAE1B403\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE30D876-F03D-4BAA-BC1B-BEF22CD159E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4FC27746-21C8-4949-A099-7BFCBB21A368\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"39D5DB56-E99F-4B2D-815D-D697ACB352FE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C3BFA93-297D-4EFB-AF7E-0C451B47C23B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nlnetlabs:nsd:3.2.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B605C0B-213F-4626-A30C-D13C0D4635D8\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.\"}, {\"lang\": \"es\", \"value\": \"query.c en NSD v3.0.x hasta v3.0.8, v3.1.x hasta v3.1.1, y v3.2.x antes de v3.2.12 permite a atacantes remotos causar una denegaci\\u00f3n de servicio (eliminar la referencia del puntero NULL y ca\\u00edda en un proceso hijo) a trav\\u00e9s de un paquete DNS modificado.\"}]",
      "id": "CVE-2012-2978",
      "lastModified": "2024-11-21T01:40:03.650",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2012-07-27T10:27:49.260",
      "references": "[{\"url\": \"http://osvdb.org/84097\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://secunia.com/advisories/49795\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://secunia.com/advisories/49997\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://www.debian.org/security/2012/dsa-2515\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/624931\", \"source\": \"cret@cert.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt\", \"source\": \"cret@cert.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/54606\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://osvdb.org/84097\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/49795\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/49997\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2012/dsa-2515\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/624931\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/54606\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cret@cert.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-2978\",\"sourceIdentifier\":\"cret@cert.org\",\"published\":\"2012-07-27T10:27:49.260\",\"lastModified\":\"2024-11-21T01:40:03.650\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.\"},{\"lang\":\"es\",\"value\":\"query.c en NSD v3.0.x hasta v3.0.8, v3.1.x hasta v3.1.1, y v3.2.x antes de v3.2.12 permite a atacantes remotos causar una denegaci\u00f3n de servicio (eliminar la referencia del puntero NULL y ca\u00edda en un proceso hijo) a trav\u00e9s de un paquete DNS modificado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E347F8C-AB1F-4967-9C85-055214798ECE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DEDA235-5B80-4816-86C5-C83A45878A3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22BC2EBF-9241-4FE1-A730-9F9BB6E2777C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3180CAA2-1518-4750-98DE-F64821297034\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56BCFAEA-AC1F-4D3E-B473-A6081D423BEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEA25A60-DD5F-4FE8-A6CC-1695232E3D95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C326A66B-457E-4130-A214-ED265576F448\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"140464BA-39D7-4B63-92F9-9D6E09CFF6DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E86C924A-6CD8-4D9A-8CFC-E4AD4CC9331E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A818B06C-8798-460D-AE5A-93162CB758A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3755E217-23CB-42EF-90E8-020D5796226B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F341E55C-DB91-4D7B-91AE-076525C52A1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"760CF611-A8BF-4E96-9F21-0796FBC8A521\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5A52D5D-F34E-4148-A1B5-41668CAF4370\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC6AED26-55BB-449E-815E-532C0DD24B26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"608E8EA7-9875-42E7-B8A4-9CE5EAE1B403\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE30D876-F03D-4BAA-BC1B-BEF22CD159E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FC27746-21C8-4949-A099-7BFCBB21A368\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39D5DB56-E99F-4B2D-815D-D697ACB352FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C3BFA93-297D-4EFB-AF7E-0C451B47C23B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:nsd:3.2.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B605C0B-213F-4626-A30C-D13C0D4635D8\"}]}]}],\"references\":[{\"url\":\"http://osvdb.org/84097\",\"source\":\"cret@cert.org\"},{\"url\":\"http://secunia.com/advisories/49795\",\"source\":\"cret@cert.org\"},{\"url\":\"http://secunia.com/advisories/49997\",\"source\":\"cret@cert.org\"},{\"url\":\"http://www.debian.org/security/2012/dsa-2515\",\"source\":\"cret@cert.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/624931\",\"source\":\"cret@cert.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt\",\"source\":\"cret@cert.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/54606\",\"source\":\"cret@cert.org\"},{\"url\":\"http://osvdb.org/84097\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/49795\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/49997\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2012/dsa-2515\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/624931\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/54606\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

ghsa-wgh7-q8c2-58gg

Vulnerability from github

Published

2022-05-17 00:10

Modified

2022-05-17 00:10

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2012-2978"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2012-07-27T10:27:00Z",
    "severity": "MODERATE"
  },
  "details": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.",
  "id": "GHSA-wgh7-q8c2-58gg",
  "modified": "2022-05-17T00:10:57Z",
  "published": "2022-05-17T00:10:57Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-2978"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/84097"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/49795"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/49997"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2012/dsa-2515"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/624931"
    },
    {
      "type": "WEB",
      "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/54606"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

gsd-2012-2978

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2012-2978

Aliases

CVE-2012-2978

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2012-2978",
    "description": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.",
    "id": "GSD-2012-2978",
    "references": [
      "https://www.suse.com/security/cve/CVE-2012-2978.html",
      "https://www.debian.org/security/2012/dsa-2515"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2012-2978"
      ],
      "details": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.",
      "id": "GSD-2012-2978",
      "modified": "2023-12-13T01:20:16.723783Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cert@cert.org",
        "ID": "CVE-2012-2978",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "84097",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/84097"
          },
          {
            "name": "VU#624931",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/624931"
          },
          {
            "name": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt",
            "refsource": "CONFIRM",
            "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
          },
          {
            "name": "54606",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/54606"
          },
          {
            "name": "49795",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/49795"
          },
          {
            "name": "49997",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/49997"
          },
          {
            "name": "DSA-2515",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2012/dsa-2515"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nlnetlabs:nsd:3.2.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2012-2978"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
            },
            {
              "name": "VU#624931",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/624931"
            },
            {
              "name": "54606",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/54606"
            },
            {
              "name": "DSA-2515",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2012/dsa-2515"
            },
            {
              "name": "49997",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/49997"
            },
            {
              "name": "49795",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/49795"
            },
            {
              "name": "84097",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/84097"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-12-22T02:29Z",
      "publishedDate": "2012-07-27T10:27Z"
    }
  }
}

fkie_cve-2012-2978

Vulnerability from fkie_nvd

Published

2012-07-27 10:27

Modified

2024-11-21 01:40

Severity ?

Summary

References

URL	Tags
cret@cert.org	http://osvdb.org/84097
cret@cert.org	http://secunia.com/advisories/49795
cret@cert.org	http://secunia.com/advisories/49997
cret@cert.org	http://www.debian.org/security/2012/dsa-2515
cret@cert.org	http://www.kb.cert.org/vuls/id/624931	US Government Resource
cret@cert.org	http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt	Vendor Advisory
cret@cert.org	http://www.securityfocus.com/bid/54606
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/84097
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/49795
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/49997
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2012/dsa-2515
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/624931	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/54606

Impacted products

Vendor	Product	Version
nlnetlabs	nsd	3.0.0
nlnetlabs	nsd	3.0.1
nlnetlabs	nsd	3.0.2
nlnetlabs	nsd	3.0.3
nlnetlabs	nsd	3.0.4
nlnetlabs	nsd	3.0.5
nlnetlabs	nsd	3.0.6
nlnetlabs	nsd	3.0.7
nlnetlabs	nsd	3.0.8
nlnetlabs	nsd	3.1.0
nlnetlabs	nsd	3.1.1
nlnetlabs	nsd	3.2.0
nlnetlabs	nsd	3.2.1
nlnetlabs	nsd	3.2.3
nlnetlabs	nsd	3.2.4
nlnetlabs	nsd	3.2.5
nlnetlabs	nsd	3.2.6
nlnetlabs	nsd	3.2.7
nlnetlabs	nsd	3.2.8
nlnetlabs	nsd	3.2.9
nlnetlabs	nsd	3.2.10

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E347F8C-AB1F-4967-9C85-055214798ECE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3DEDA235-5B80-4816-86C5-C83A45878A3E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "22BC2EBF-9241-4FE1-A730-9F9BB6E2777C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "3180CAA2-1518-4750-98DE-F64821297034",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "56BCFAEA-AC1F-4D3E-B473-A6081D423BEB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEA25A60-DD5F-4FE8-A6CC-1695232E3D95",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "C326A66B-457E-4130-A214-ED265576F448",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "140464BA-39D7-4B63-92F9-9D6E09CFF6DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "E86C924A-6CD8-4D9A-8CFC-E4AD4CC9331E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A818B06C-8798-460D-AE5A-93162CB758A0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3755E217-23CB-42EF-90E8-020D5796226B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F341E55C-DB91-4D7B-91AE-076525C52A1F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "760CF611-A8BF-4E96-9F21-0796FBC8A521",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "E5A52D5D-F34E-4148-A1B5-41668CAF4370",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "BC6AED26-55BB-449E-815E-532C0DD24B26",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "608E8EA7-9875-42E7-B8A4-9CE5EAE1B403",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE30D876-F03D-4BAA-BC1B-BEF22CD159E0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "4FC27746-21C8-4949-A099-7BFCBB21A368",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "39D5DB56-E99F-4B2D-815D-D697ACB352FE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C3BFA93-297D-4EFB-AF7E-0C451B47C23B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nlnetlabs:nsd:3.2.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B605C0B-213F-4626-A30C-D13C0D4635D8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet."
    },
    {
      "lang": "es",
      "value": "query.c en NSD v3.0.x hasta v3.0.8, v3.1.x hasta v3.1.1, y v3.2.x antes de v3.2.12 permite a atacantes remotos causar una denegaci\u00f3n de servicio (eliminar la referencia del puntero NULL y ca\u00edda en un proceso hijo) a trav\u00e9s de un paquete DNS modificado."
    }
  ],
  "id": "CVE-2012-2978",
  "lastModified": "2024-11-21T01:40:03.650",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2012-07-27T10:27:49.260",
  "references": [
    {
      "source": "cret@cert.org",
      "url": "http://osvdb.org/84097"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/49795"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/49997"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.debian.org/security/2012/dsa-2515"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/624931"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.securityfocus.com/bid/54606"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/84097"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/49795"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/49997"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2012/dsa-2515"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/624931"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/54606"
    }
  ],
  "sourceIdentifier": "cret@cert.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2012-2978

Vulnerability from cvelistv5

ghsa-wgh7-q8c2-58gg

Vulnerability from github

gsd-2012-2978

Vulnerability from gsd

fkie_cve-2012-2978

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature