Vulnerability CVE-2013-1428

Vulnerability CVE-2013-1428

Published: 2013-04-26

Description:

	Topic	Author	Date
High	Tincd Post-Authentication Remote TCP Stack Buffer Overflow	Martin	02.12.2014
High	Tincd Post-Authentication Remote TCP Stack Buffer Overflow	Martin Schobert	03.12.2014

Type:

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.5/10	6.4/10	8/10

Affected software
Tinc-vpn -> TINC

https://github.com/gsliepen/tinc/commit/17a33dfd95b1a29e90db76414eb9622df9632320

http://www.tinc-vpn.org/pipermail/tinc/2013-April/003240.html

http://www.tinc-vpn.org/news/

http://www.securityfocus.com/bid/59369

http://www.debian.org/security/2013/dsa-2663

http://secunia.com/advisories/53108

http://secunia.com/advisories/53087

http://osvdb.org/92653

http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106167.html

http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105559.html

http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105531.html

http://freecode.com/projects/tinc/releases/354122