CVE-2011-4862

Published Dec 25, 2011

Last updated 4 years ago

CVSS info 10.0

Overview

Description: Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
Source: secteam@freebsd.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-120

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gnu:inetutils:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E97F9E08-6311-4AA9-87D7-E498F0FD8AE0",
            "versionEndExcluding": "1.9"
          },
          {
            "criteria": "cpe:2.3:a:heimdal_project:heimdal:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6C6F35D-BB85-46B3-97F5-AA5C03A0D407",
            "versionEndIncluding": "1.5.1"
          },
          {
            "criteria": "cpe:2.3:a:mit:krb5-appl:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3818F6F-3087-4097-A008-CC865FC9F4EA",
            "versionEndIncluding": "1.0.2"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37A031E6-89ED-416B-92B5-1D36A44E05BD",
            "versionEndIncluding": "9.0",
            "versionStartIncluding": "7.3"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9396E005-22D8-4342-9323-C7DEA379191D"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "706C6399-CAD1-46E3-87A2-8DFE2CF497ED"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C757774-08E7-40AA-B532-6F705C8F7639"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5646FDE9-CF21-46A9-B89D-F5BBDB4249AF"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE554781-1EB9-446E-911F-6C11970C47F4"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4339DE06-19FB-4B8E-B6AE-3495F605AD05"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60FBDD82-691C-4D9D-B71B-F9AFF6931B53"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CD2D897-E321-4CED-92E0-11A98B52053C"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "22A79A35-05DB-4B9F-AD3E-EA6F933CF10C"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:ltss:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CED02712-1031-4206-AC4D-E68710F46EC9"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1D7B467-58DD-45F1-9F1F-632620DF072A"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A44C3422-0D42-473E-ABB4-279D7494EE2F"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:-:vmware:*:*",
            "vulnerable": true,
            "matchCriteriaId": "544D7864-8F4A-4ABC-AA5E-01F73D273C63"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "436EF2ED-FDBB-4B64-8EC4-33C3E4253F06"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8C91701-DF37-4F7B-AB9A-B1BFDB4991F8"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References