Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-4458
HistoryDec 12, 2013 - 6:55 p.m.

CVE-2013-4458

2013-12-1218:55:10
CWE-119
[email protected]
web.nvd.nist.gov
8

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.7

Confidence

High

EPSS

0.16

Percentile

96.1%

JSON

Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.18 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of AF_INET6 address results. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1914.

Affected configurations

Nvd
Node
gnuglibcRange2.18
OR
gnuglibcMatch2.0
OR
gnuglibcMatch2.0.1
OR
gnuglibcMatch2.0.2
OR
gnuglibcMatch2.0.3
OR
gnuglibcMatch2.0.4
OR
gnuglibcMatch2.0.5
OR
gnuglibcMatch2.0.6
OR
gnuglibcMatch2.1
OR
gnuglibcMatch2.1.1
OR
gnuglibcMatch2.1.1.6
OR
gnuglibcMatch2.1.2
OR
gnuglibcMatch2.1.3
OR
gnuglibcMatch2.1.9
OR
gnuglibcMatch2.10.1
OR
gnuglibcMatch2.11
OR
gnuglibcMatch2.11.1
OR
gnuglibcMatch2.11.2
OR
gnuglibcMatch2.11.3
OR
gnuglibcMatch2.12.1
OR
gnuglibcMatch2.12.2
OR
gnuglibcMatch2.13
OR
gnuglibcMatch2.14
OR
gnuglibcMatch2.14.1
OR
gnuglibcMatch2.15
OR
gnuglibcMatch2.16
OR
gnuglibcMatch2.17
Node
suselinux_enterprise_debuginfoMatch11sp2
OR
suselinux_enterprise_serverMatch11sp2ltss
VendorProductVersionCPE
gnuglibc*cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*
gnuglibc2.0cpe:2.3:a:gnu:glibc:2.0:*:*:*:*:*:*:*
gnuglibc2.0.1cpe:2.3:a:gnu:glibc:2.0.1:*:*:*:*:*:*:*
gnuglibc2.0.2cpe:2.3:a:gnu:glibc:2.0.2:*:*:*:*:*:*:*
gnuglibc2.0.3cpe:2.3:a:gnu:glibc:2.0.3:*:*:*:*:*:*:*
gnuglibc2.0.4cpe:2.3:a:gnu:glibc:2.0.4:*:*:*:*:*:*:*
gnuglibc2.0.5cpe:2.3:a:gnu:glibc:2.0.5:*:*:*:*:*:*:*
gnuglibc2.0.6cpe:2.3:a:gnu:glibc:2.0.6:*:*:*:*:*:*:*
gnuglibc2.1cpe:2.3:a:gnu:glibc:2.1:*:*:*:*:*:*:*
gnuglibc2.1.1cpe:2.3:a:gnu:glibc:2.1.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 291

Related

cvelist 3
prion 3
cve 3
debiancve 3
ubuntucve 3
f5 4
nvd 2
nessus 51
openvas 45
securityvulns 4
centos 3
android 1
redhat 4
veracode 1
oraclelinux 3
mageia 2
amazon 1
osv 3
ubuntu 4
debian 2
altlinux 3
fedora 1
vmware 2
gentoo 1
packetstorm 1
zdt 1
slackware 1
suse 1
cvelist
cvelist
CVE-2013-4458
2013-12-12 18:00:00
CVE-2013-1914
2013-04-29 22:00:00
CVE-2016-3706
2016-06-10 15:00:00
prion
prion
Stack overflow
2013-12-12 18:55:00
Stack overflow
2013-04-29 22:55:00
Stack overflow
2016-06-10 15:59:00
cve
cve
CVE-2013-4458
2013-12-12 18:55:10
CVE-2013-1914
2013-04-29 22:55:01
CVE-2016-3706
2016-06-10 15:59:03
debiancve
debiancve
CVE-2013-4458
2013-12-12 18:55:10
CVE-2013-1914
2013-04-29 22:55:01
CVE-2016-3706
2016-06-10 15:59:03
ubuntucve
ubuntucve
CVE-2013-4458
2013-12-12 00:00:00
CVE-2013-1914
2013-04-29 00:00:00
CVE-2016-3706
2016-06-10 00:00:00
f5
f5
K15640 : GNU C Library (glibc) vulnerabilities CVE-2014-0475, CVE-2014-5119, CVE-2013-4458
2014-10-02 00:00:00
SOL15640 - GNU C Library (glibc) vulnerabilities CVE-2014-0475, CVE-2014-5119, CVE-2013-4458
2014-10-02 00:00:00
K06493172 : glibc vulnerability CVE-2016-3706
2016-08-05 00:00:00
nvd
nvd
CVE-2013-1914
2013-04-29 22:55:01
CVE-2016-3706
2016-06-10 15:59:03
nessus
nessus
SUSE SLED10 / SLES10 Security Update : glibc (SUSE-SU-2013:0858-1)
2015-05-20 00:00:00
SuSE 10 Security Update : glibc (ZYPP Patch Number 8579)
2013-06-05 00:00:00
Oracle Linux 6 : glibc (ELSA-2014-1391)
2014-10-17 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:0858-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0760-1)
2021-06-09 00:00:00
RedHat Update for glibc RHSA-2014:1391-02
2014-10-15 00:00:00
securityvulns
securityvulns
[ MDVSA-2013:284 ] glibc
2013-12-01 00:00:00
[ MDVSA-2013:163 ] glibc
2013-05-09 00:00:00
GNU glibc security vulnerabilities
2013-05-09 00:00:00
centos
centos
glibc, nscd security update
2014-10-20 18:08:56
glibc, nscd security update
2013-04-24 21:58:40
glibc, nscd security update
2013-11-26 13:31:38
android
android
CVE-2016-3706
2017-12-01 00:00:00
redhat
redhat
(RHSA-2014:1391) Moderate: glibc security, bug fix, and enhancement update
2014-10-14 00:00:00
(RHSA-2013:0769) Low: glibc security and bug fix update
2013-04-24 00:00:00
(RHSA-2013:1605) Moderate: glibc security, bug fix, and enhancement update
2013-11-21 00:00:00
veracode
veracode
Stack-based Buffer Overflow
2019-05-02 04:44:45
oraclelinux
oraclelinux
glibc security and bug fix update
2013-04-24 00:00:00
glibc security, bug fix, and enhancement update
2013-11-25 00:00:00
glibc security, bug fix, and enhancement update
2014-10-15 00:00:00
mageia
mageia
Updated glibc package fixes security vulnerabilities
2013-11-22 22:44:49
Updated glibc packages fix security vulnerabilities
2016-05-24 01:00:58
amazon
amazon
Medium: glibc
2013-12-17 21:39:00
osv
osv
eglibc - security update
2016-05-30 00:00:00
eglibc - security update
2015-03-06 00:00:00
glibc-2.24-2.3 on GA media
2024-06-15 00:00:00
ubuntu
ubuntu
GNU C Library regression
2014-09-08 00:00:00
GNU C Library vulnerabilities
2014-08-04 00:00:00
GNU C Library regression
2014-08-05 00:00:00
debian
debian
[SECURITY] [DLA 494-1] eglibc security update
2016-05-30 04:24:49
[SECURITY] [DLA 165-1] eglibc security update
2015-03-06 15:39:53
altlinux
altlinux
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
Security fix for the ALT Linux 9 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
Security fix for the ALT Linux 7 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: glibc-2.17-13.fc19
2013-08-22 00:50:09
vmware
vmware
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2015-03-08 00:00:00
packetstorm
packetstorm
Moxa Command Injection / Cross Site Scripting / Vulnerable Software
2021-09-01 00:00:00
zdt
zdt
Moxa Command Injection / Cross Site Scripting Vulnerabilities
2021-09-01 00:00:00
slackware
slackware
[slackware-security] glibc
2014-10-24 05:36:04
suse
suse
Security update for glibc (important)
2016-02-16 20:15:44

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.7

Confidence

High

EPSS

0.16

Percentile

96.1%

JSON
Related for NVD:CVE-2013-4458
cvelist3prion3cve3debiancve3ubuntucve3f54nvd2nessus51openvas45securityvulns4centos3android1redhat4veracode1oraclelinux3mageia2amazon1osv3ubuntu4debian2altlinux3fedora1vmware2gentoo1packetstorm1zdt1slackware1suse1