| |
Vulnerability CVE-2012-3523
Published: 2012-11-11
Description: |
The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411. |
Type:
CWE-264 (Permissions, Privileges, and Access Controls)
CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:P)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
6.8/10 |
6.4/10 |
8.6/10 |
Exploit range |
Attack complexity |
Authentication |
Remote |
Medium |
No required |
Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
Partial |
Partial |
References: |
http://www.mandriva.com/security/advisories?name=MDVSA-2012:156
http://secunia.com/advisories/50661
http://lists.opensuse.org/opensuse-updates/2012-09/msg00058.html
|
|
|
closedb();
?>
Copyright 2024, cxsecurity.com
|
|
|