Lucene search

[email protected]NVD:CVE-2011-4620

HistoryDec 31, 2011 - 1:55 a.m.

CVE-2011-4620

2011-12-3101:55:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.385

Percentile

97.3%

JSON

Buffer overflow in the ulSetError function in util/ulError.cxx in PLIB 1.8.5, as used in TORCS 1.3.1 and other products, allows user-assisted remote attackers to execute arbitrary code via vectors involving a long error message, as demonstrated by a crafted acc file for TORCS. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

steve_j_bakerplibMatch1.8.5

VendorProductVersionCPE
steve_j_bakerplib1.8.5cpe:2.3:a:steve_j_baker:plib:1.8.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
steve_j_baker	plib	1.8.5	cpe:2.3:a:steve_j_baker:plib:1.8.5:::::::*

References

lists.opensuse.org/opensuse-security-announce/2012-11/msg00013.html

lists.opensuse.org/opensuse-security-announce/2013-01/msg00015.html

openwall.com/lists/oss-security/2011/12/21/2

osvdb.org/77973

secunia.com/advisories/47297

secunia.com/advisories/51340

www.exploit-db.com/exploits/18258/

security.gentoo.org/glsa/201606-16

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.385

Percentile

97.3%

JSON

Related for NVD:CVE-2011-4620

openvas12 securityvulns2 nessus7 exploitdb1 freebsd2 debian1 fedora3 prion1 cve1 gentoo1 ubuntucve1 debiancve1 cvelist1 suse2