CVE-2012-4409: Buffer Overflow
First published: Thu Sep 06 2012(Updated: )
A buffer overflow was reported [1],[2] in mcrypt version 2.6.8 and earlier due to a boundary error in the processing of an encrypted file (via the check_file_head() function in src/extra.c). If a user were tricked into attempting to decrypt a specially-crafted .nc encrypted flie, this flaw would cause a stack-based buffer overflow that could potentially lead to arbitrary code execution. Note that this is caught by FORTIFY_SOURCE, which renders this to being a crash-only bug on Fedora. There is currently no upstream patches for this flaw. [1] <a href="https://secunia.com/advisories/50507/">https://secunia.com/advisories/50507/</a> [2] <a href="https://bugs.gentoo.org/show_bug.cgi?id=434112">https://bugs.gentoo.org/show_bug.cgi?id=434112</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libgcrypt | <=2.6.8 | |
| Libgcrypt | =2.6.4 | |
| Libgcrypt | =2.6.5 | |
| Libgcrypt | =2.6.6 | |
| Libgcrypt | =2.6.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://secunia.com/advisories/50507/
- https://bugs.gentoo.org/show_bug.cgi?id=434112
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=855030
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=855031
- http://www.openwall.com/lists/oss-security/2012/09/06/1
- https://access.redhat.com/security/cve/CVE-2012-4409
- http://www.openwall.com/lists/oss-security/2012/09/06/4
- http://www.openwall.com/lists/oss-security/2012/09/06/8
- https://bugzilla.redhat.com/show_bug.cgi?id=855029
- http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086519.html
- http://lists.fedoraproject.org/pipermail/package-announce/2012-September/087542.html
- http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088281.html
- http://packetstormsecurity.org/files/116268/mcrypt-2.6.8-Buffer-Overflow-Proof-Of-Concept.html
- http://secunia.com/advisories/50507
- http://secunia.com/advisories/51010
- http://www.securitytracker.com/id?1027532
Frequently Asked Questions
What is the severity of CVE-2012-4409?
CVE-2012-4409 is classified as a high severity vulnerability due to its potential to cause a buffer overflow leading to application crashes or remote code execution.
How do I fix CVE-2012-4409?
To mitigate CVE-2012-4409, you should upgrade to mcrypt version 2.6.9 or later, where the vulnerability has been patched.
What versions are affected by CVE-2012-4409?
CVE-2012-4409 affects mcrypt versions 2.6.8 and earlier, specifically 2.6.4 through 2.6.8.
What are the potential consequences of exploiting CVE-2012-4409?
Exploitation of CVE-2012-4409 could allow an attacker to execute arbitrary code on the victim's machine, potentially leading to data compromise.
How does CVE-2012-4409 occur?
CVE-2012-4409 occurs due to a buffer overflow vulnerability in the check_file_head() function, which mishandles encrypted files.
- collector/redhat-bugzilla
- alias/CVE-2012-4409
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/description
- agent/severity
- agent/author
- agent/softwarecombine
- agent/tags
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mcrypt
- canonical/libgcrypt
- version/libgcrypt/2.6.8
- version/libgcrypt/2.6.4
- version/libgcrypt/2.6.5
- version/libgcrypt/2.6.6
- version/libgcrypt/2.6.7