FKIE_CVE-2012-0698

Vulnerability from fkie_nvd - Published: 2012-11-26 12:45 - Updated: 2025-04-11 00:51
Severity ?
Summary
tcsd in TrouSerS before 0.3.10 allows remote attackers to cause a denial of service (daemon crash) via a crafted type_offset value in a TCP packet to port 30003.
References
cve@mitre.orghttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649
cve@mitre.orghttp://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html
cve@mitre.orghttp://secunia.com/advisories/51295
cve@mitre.orghttp://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358
cve@mitre.orghttp://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601
cve@mitre.orghttp://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786
cve@mitre.orghttp://www.debian.org/security/2012/dsa-2576
cve@mitre.orghttp://www.exploit-db.com/exploits/22904/Exploit
cve@mitre.orghttps://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of
cve@mitre.orghttps://bugzilla.redhat.com/show_bug.cgi?id=781648
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/80226
af854a3a-2127-422b-91ae-364da2661108http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649
af854a3a-2127-422b-91ae-364da2661108http://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/51295
af854a3a-2127-422b-91ae-364da2661108http://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358
af854a3a-2127-422b-91ae-364da2661108http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601
af854a3a-2127-422b-91ae-364da2661108http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2012/dsa-2576
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/22904/Exploit
af854a3a-2127-422b-91ae-364da2661108https://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=781648
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/80226
Impacted products
Vendor Product Version
trustedcomputinggroup trousers *
trustedcomputinggroup trousers 0.2.8
trustedcomputinggroup trousers 0.2.9
trustedcomputinggroup trousers 0.2.9.1
trustedcomputinggroup trousers 0.2.9.2
trustedcomputinggroup trousers 0.3.0
trustedcomputinggroup trousers 0.3.1
trustedcomputinggroup trousers 0.3.2
trustedcomputinggroup trousers 0.3.3
trustedcomputinggroup trousers 0.3.4
trustedcomputinggroup trousers 0.3.5
trustedcomputinggroup trousers 0.3.6
trustedcomputinggroup trousers 0.3.7
trustedcomputinggroup trousers 0.3.8
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B26BB7FF-78B5-4403-8B3B-F58F1935BF6B",
              "versionEndIncluding": "0.3.9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "AE19CB10-C035-4B8D-84FF-AB8A966C5EFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "90D36A6D-9B71-4178-A378-02C7697CF4A7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.2.9.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "76ADC112-FD85-440C-AAC1-61D5823D6D33",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.2.9.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "AE01B981-2777-4F9B-BE21-9D4C45FED2FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD2A21D4-0CD4-4F86-B62E-EF709A7385C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "57B39D1D-4E95-4B7D-8350-CE28143040ED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D27E537A-ED8C-489B-A168-B91F8480FEDF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "63026279-C382-4D29-AC6F-4694473AA0A4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8C5ABBC-BA8B-4117-BBFA-05D7939659DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "32F8EDAB-E94F-4B51-B1EE-4D91BD309C4E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "56532F08-D7E0-4D1F-BE96-7B0723A05902",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9BE423-849E-42B6-AADA-6962BD3211E2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:trustedcomputinggroup:trousers:0.3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "33E8A081-91EC-4A50-BBC5-57EAB15840A3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "tcsd in TrouSerS before 0.3.10 allows remote attackers to cause a denial of service (daemon crash) via a crafted type_offset value in a TCP packet to port 30003."
    },
    {
      "lang": "es",
      "value": "tcsd en TrouSerS antes de v0.3.10 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda del demonio) a trav\u00e9s de un valor type_offset modificado en un paquete TCP al puerto 30003."
    }
  ],
  "id": "CVE-2012-0698",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2012-11-26T12:45:22.033",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/51295"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=3473554\u0026group_id=126012\u0026atid=704358"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2012/dsa-2576"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/22904/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=781648"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80226"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/51295"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=3473554\u0026group_id=126012\u0026atid=704358"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2012/dsa-2576"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/22904/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=781648"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80226"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.