What is the severity of CVE-2012-3411?

CVE-2012-3411 has a severity associated with denial of service due to potential traffic amplification.

How do I fix CVE-2012-3411?

To fix CVE-2012-3411, update to a version of dnsmasq newer than 2.63test1.

Who is affected by CVE-2012-3411?

CVE-2012-3411 affects users of dnsmasq versions prior to 2.63test1, especially with specific libvirt configurations.

What type of attack does CVE-2012-3411 facilitate?

CVE-2012-3411 facilitates denial of service attacks through traffic amplification via spoofed DNS queries.

Is CVE-2012-3411 a local or remote vulnerability?

CVE-2012-3411 is a remote vulnerability that allows attackers to exploit it from a distance.

Vulnerability/
CVE-2012-3411

medium

CWE

18/6/2012

5/3/2013

13/2/2023

CVE-2012-3411: Input Validation

First published: Mon Jun 18 2012(Updated: )

Dnsmasq before 2.63test1, when used with certain libvirt configurations, replies to requests from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed DNS query.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
dnsmasq	<=2.62
redhat enterprise Linux desktop	=6.0
redhat enterprise Linux server	=6.0
redhat enterprise Linux workstation	=6.0

Remedy

https://bugzilla.redhat.com/show_bug.cgi?id=833033

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-3411?
CVE-2012-3411 has a severity associated with denial of service due to potential traffic amplification.
How do I fix CVE-2012-3411?
To fix CVE-2012-3411, update to a version of dnsmasq newer than 2.63test1.
Who is affected by CVE-2012-3411?
CVE-2012-3411 affects users of dnsmasq versions prior to 2.63test1, especially with specific libvirt configurations.
What type of attack does CVE-2012-3411 facilitate?
CVE-2012-3411 facilitates denial of service attacks through traffic amplification via spoofed DNS queries.
Is CVE-2012-3411 a local or remote vulnerability?
CVE-2012-3411 is a remote vulnerability that allows attackers to exploit it from a distance.

collector/redhat-bugzilla
alias/CVE-2012-3411
agent/type
agent/first-publish-date
agent/last-modified-date
agent/description
agent/author
agent/references
agent/remedy
agent/severity
agent/weakness
agent/event
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/thekelleys
canonical/dnsmasq
version/dnsmasq/2.62
vendor/redhat
canonical/redhat enterprise linux desktop
version/redhat enterprise linux desktop/6.0
canonical/redhat enterprise linux server
version/redhat enterprise linux server/6.0
canonical/redhat enterprise linux workstation
version/redhat enterprise linux workstation/6.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.