CVE-2012-2942

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Buffer overflow in the trash buffer in the header capture functionality in HAProxy before 1.4.21, when global.tune.bufsize is set to a value greater than the default and header rewriting is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors.

References

http://haproxy.1wt.eu/#news

http://haproxy.1wt.eu/download/1.4/src/CHANGELOG

http://haproxy.1wt.eu/git?p=haproxy-1.4.git;a=commit;h=30297cb17147a8d339eb160226bcc08c91d9530b

http://secunia.com/advisories/49261

http://security.gentoo.org/glsa/glsa-201301-02.xml

http://www.debian.org/security/2013/dsa-2711

http://www.openwall.com/lists/oss-security/2012/05/23/12

http://www.openwall.com/lists/oss-security/2012/05/23/15

http://www.openwall.com/lists/oss-security/2012/05/28/1

http://www.securityfocus.com/bid/53647

http://www.ubuntu.com/usn/USN-1800-1

https://exchange.xforce.ibmcloud.com/vulnerabilities/75777

Details

Source: MITRE

Published: 2012-05-27

Updated: 2017-08-29

Type: CWE-119

Risk Information

CVSS v2

Base Score: 5.1

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 4.9

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:haproxy:haproxy:*:*:*:*:*:*:*:* versions up to 1.4.20 (inclusive)

Tenable Plugins

View all (9 total)

IDNameProductFamilySeverity
6900HAProxy Trash Buffer Overflow VulnerabilityNessus Network MonitorWeb Servers
medium
66936Debian DSA-2711-1 : haproxy - several vulnerabilitiesNessusDebian Local Security Checks
medium
65980Ubuntu 11.10 / 12.04 LTS / 12.10 : haproxy vulnerabilities (USN-1800-1)NessusUbuntu Local Security Checks
medium
63436GLSA-201301-02 : HAProxy: Arbitrary code executionNessusGentoo Local Security Checks
medium
62658Fedora 16 : haproxy-1.4.22-1.fc16 (2012-16056)NessusFedora Local Security Checks
medium
62657Fedora 17 : haproxy-1.4.22-1.fc17 (2012-16033)NessusFedora Local Security Checks
medium
62552Fedora 18 : haproxy-1.4.22-1.fc18 (2012-16023)NessusFedora Local Security Checks
medium
59798HAProxy Trash Buffer Overflow VulnerabilityNessusMisc.
medium
59282FreeBSD : haproxy -- buffer overflow (617959ce-a5f6-11e1-a284-0023ae8e59f0)NessusFreeBSD Local Security Checks
medium