Lucene search

[email protected]CVE-2012-3549

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-3549

2022-10-0316:15:24

[email protected]

web.nvd.nist.gov

cve-2012-3549

sctp implementation

freebsd 8.2

denial of service

null pointer dereference

kernel panic

asconf chunk

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

High

0.065 Low

EPSS

Percentile

93.8%

JSON

The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted ASCONF chunk.

Affected configurations

NVD

Node

freebsdfreebsdMatch8.2

CPENameOperatorVersion
freebsd:freebsdfreebsdeq8.2

CPE	Name	Operator	Version
freebsd:freebsd	freebsd	eq	8.2

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=686962

www.exploit-db.com/exploits/20226

www.openwall.com/lists/oss-security/2012/08/28/9

www.openwall.com/lists/oss-security/2012/08/29/6

www.securityfocus.com/bid/54797

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

High

0.065 Low

EPSS

Percentile

93.8%

JSON

Related for CVE-2012-3549

debiancve1 prion1 nvd1 cvelist1