FreeBSD : socat -- Heap-based buffer overflow (6601127c-9e09-11e1-b5e0-000c299b62e1)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

The socat development team reports :

This vulnerability can be exploited when socat is invoked with the
READLINE address (this is usually only used interactively) without
option 'prompt' and without option 'noprompt' and an attacker succeeds
to provide malicious data to the other (arbitrary) address that is
then transferred by socat to the READLINE address for output.

Successful exploitation may allow an attacker to execute arbitrary
code with the privileges of the socat process.

See also :

http://www.nessus.org/u?a0fda42f

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 6.2
(CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 59095 ()

Bugtraq ID:

CVE ID: CVE-2012-0219

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now