SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2012-3291

Date: (C)2012-06-07 (M)2023-12-22

Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.8
Exploit Score: 10.0
Impact Score: 6.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: COMPLETE

Reference:

FEDORA-2012-6758

http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/14cae65318d3ef1f7d449e463b72b6934e82f1c2

http://www.infradead.org/openconnect/changelog.html

openSUSE-SU-2013:1072

oval:org.mitre.oval:def:17242

cpe:/a:infradead:openconnect
cpe:/a:infradead:openconnect:3.02
cpe:/a:infradead:openconnect:2.11
cpe:/a:infradead:openconnect:1.00
...

oval:org.secpod.oval:def:600832

© SecPod Technologies