CVE-2011-4862
Published Dec 25, 2011
Last updated 4 years ago
Overview
- Description
- Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
- Source
- secteam@freebsd.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-120
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gnu:inetutils:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E97F9E08-6311-4AA9-87D7-E498F0FD8AE0",
"versionEndExcluding": "1.9"
},
{
"criteria": "cpe:2.3:a:heimdal_project:heimdal:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B6C6F35D-BB85-46B3-97F5-AA5C03A0D407",
"versionEndIncluding": "1.5.1"
},
{
"criteria": "cpe:2.3:a:mit:krb5-appl:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3818F6F-3087-4097-A008-CC865FC9F4EA",
"versionEndIncluding": "1.0.2"
},
{
"criteria": "cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37A031E6-89ED-416B-92B5-1D36A44E05BD",
"versionEndIncluding": "9.0",
"versionStartIncluding": "7.3"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9396E005-22D8-4342-9323-C7DEA379191D"
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "706C6399-CAD1-46E3-87A2-8DFE2CF497ED"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C757774-08E7-40AA-B532-6F705C8F7639"
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244"
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5646FDE9-CF21-46A9-B89D-F5BBDB4249AF"
},
{
"criteria": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE554781-1EB9-446E-911F-6C11970C47F4"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4339DE06-19FB-4B8E-B6AE-3495F605AD05"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "60FBDD82-691C-4D9D-B71B-F9AFF6931B53"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4CD2D897-E321-4CED-92E0-11A98B52053C"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "22A79A35-05DB-4B9F-AD3E-EA6F933CF10C"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:ltss:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CED02712-1031-4206-AC4D-E68710F46EC9"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1D7B467-58DD-45F1-9F1F-632620DF072A"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*",
"vulnerable": true,
"matchCriteriaId": "A44C3422-0D42-473E-ABB4-279D7494EE2F"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:-:vmware:*:*",
"vulnerable": true,
"matchCriteriaId": "544D7864-8F4A-4ABC-AA5E-01F73D273C63"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "436EF2ED-FDBB-4B64-8EC4-33C3E4253F06"
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E8C91701-DF37-4F7B-AB9A-B1BFDB4991F8"
}
],
"operator": "OR"
}
]
}
]