Vulnerability Details : CVE-2012-4409
Stack-based buffer overflow in the check_file_head function in extra.c in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to execute arbitrary code via an encrypted file with a crafted header containing long salt data that is not properly handled during decryption.
Vulnerability category: OverflowExecute code
Products affected by CVE-2012-4409
- cpe:2.3:a:mcrypt:mcrypt:*:*:*:*:*:*:*:*
- cpe:2.3:a:mcrypt:mcrypt:2.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:mcrypt:mcrypt:2.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:mcrypt:mcrypt:2.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:mcrypt:mcrypt:2.6.6:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-4409
40.57%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 97 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-4409
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
CWE ids for CVE-2012-4409
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-4409
-
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/087542.html
[SECURITY] Fedora 16 Update: mcrypt-2.6.8-9.fc16
-
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088281.html
[SECURITY] Fedora 17 Update: mcrypt-2.6.8-9.fc17
-
http://www.openwall.com/lists/oss-security/2012/09/06/4
oss-security - Re: CVE request - mcrypt buffer overflow flaw
-
http://packetstormsecurity.org/files/116268/mcrypt-2.6.8-Buffer-Overflow-Proof-Of-Concept.html
mcrypt 2.6.8 Buffer Overflow Proof Of Concept ≈ Packet StormExploit
-
https://bugzilla.redhat.com/show_bug.cgi?id=855029
855029 – (CVE-2012-4409) CVE-2012-4409 mcrypt: buffer overflow when processing encrypted file headers
-
http://www.securitytracker.com/id?1027532
MCrypt Stack Overflow Lets Remote Users Execute Arbitrary Code - SecurityTracker
-
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086519.html
[SECURITY] Fedora 18 Update: mcrypt-2.6.8-9.fc18
Jump to