CVE-2012-2385

Published Jun 29, 2012

Last updated 7 years ago

Overview

Description: The terminal dispatcher in mosh before 1.2.1 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape sequence with a large repeat count value.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 2.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-399

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "749052CB-2810-4C63-9CD1-09126FD33BEF",
            "versionEndIncluding": "1.2-2"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:0.98c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FE64BFE-579E-4F08-A510-5C505CDC6767"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D64FC1A8-A19B-4594-85A1-36F177AB2C8C"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36E00175-618B-4C55-983D-9C407BCEF385"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F13CC59B-E80F-4C90-9570-D5A782322329"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01EE4E30-4186-4973-A24D-BE1B1FCB1F24"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D686163-2060-4544-939E-9DBC99A42E08"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.1.3-1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EFB1E1B-469B-4BF5-A87F-15F0856C06E3"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.1.3-2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D8A2450-A42E-4553-9B25-EA560AD99A9A"
          },
          {
            "criteria": "cpe:2.3:a:keith_winstein:mosh:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "479FD965-8DE7-44CD-9112-9F00845B0CDF"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References