CVE-2012-0698: Input Validation
First published: Sat Jan 14 2012(Updated: )
From Andy Lutomirski The attached Python script will segfault tcsd. This particular vulnerability is a read from an attacker-controlled address, so getting anything more severe than information disclosure out of it may be difficult. But there is a lot of fishy input validation, and it may be possible to persuade the code to write out of bounds as well. It is certainly possible to cause memory allocation failures, but I haven't seen one that's unchecked yet. Upstream report (currently private) here: <a href="https://sourceforge.net/tracker/?func=detail&atid=704358&aid=3473554&group_id=126012">https://sourceforge.net/tracker/?func=detail&atid=704358&aid=3473554&group_id=126012</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Trustedcomputinggroup Trousers | <=0.3.9 | |
| Trustedcomputinggroup Trousers | =0.2.8 | |
| Trustedcomputinggroup Trousers | =0.2.9 | |
| Trustedcomputinggroup Trousers | =0.2.9.1 | |
| Trustedcomputinggroup Trousers | =0.2.9.2 | |
| Trustedcomputinggroup Trousers | =0.3.0 | |
| Trustedcomputinggroup Trousers | =0.3.1 | |
| Trustedcomputinggroup Trousers | =0.3.2 | |
| Trustedcomputinggroup Trousers | =0.3.3 | |
| Trustedcomputinggroup Trousers | =0.3.4 | |
| Trustedcomputinggroup Trousers | =0.3.5 | |
| Trustedcomputinggroup Trousers | =0.3.6 | |
| Trustedcomputinggroup Trousers | =0.3.7 | |
| Trustedcomputinggroup Trousers | =0.3.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://sourceforge.net/tracker/?func=detail&atid=704358&aid=3473554&group_id=126012
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=781637
- https://access.redhat.com/security/cve/CVE-2012-0698
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=781666
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=781648#c3
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers;a=commit;h=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786
- https://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358
- https://access.redhat.com/security/updates/classification/
- https://rhn.redhat.com/errata/RHSA-2014-1507.html
- https://bugzilla.redhat.com/show_bug.cgi?id=781648
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649
- http://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html
- http://secunia.com/advisories/51295
- http://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers;a=commit;h=50dd06a6f639b76b3bb629606ef71b2dc5407601
- http://www.debian.org/security/2012/dsa-2576
- http://www.exploit-db.com/exploits/22904/
- https://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80226
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2012-0698
- agent/software-canonical-lookup
- agent/tags
- agent/trending
- vendor/trustedcomputinggroup
- canonical/trustedcomputinggroup trousers
- version/trustedcomputinggroup trousers/0.3.9
- version/trustedcomputinggroup trousers/0.2.8
- version/trustedcomputinggroup trousers/0.2.9
- version/trustedcomputinggroup trousers/0.2.9.1
- version/trustedcomputinggroup trousers/0.2.9.2
- version/trustedcomputinggroup trousers/0.3.0
- version/trustedcomputinggroup trousers/0.3.1
- version/trustedcomputinggroup trousers/0.3.2
- version/trustedcomputinggroup trousers/0.3.3
- version/trustedcomputinggroup trousers/0.3.4
- version/trustedcomputinggroup trousers/0.3.5
- version/trustedcomputinggroup trousers/0.3.6
- version/trustedcomputinggroup trousers/0.3.7
- version/trustedcomputinggroup trousers/0.3.8
- package-manager/redhat