CVE-2012-0065

Published: 06/10/2012 Updated: 13/02/2023

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Heap-based buffer overflow in the receive_packet function in libusbmuxd/libusbmuxd.c in usbmuxd 1.0.5 up to and including 1.0.7 allows physically proximate malicious users to execute arbitrary code via a long SerialNumber field in a property list.

Vulnerable Product	Search on Vulmon	Subscribe to Product
nikias bassen usbmuxd 1.0.6
nikias bassen usbmuxd 1.0.5
nikias bassen usbmuxd 1.0.7

usbmuxd could be made to crash or run programs if it received specially crafted input ...

Debian Bug report logs - #656581 usbmuxd: buffer overflow introduced in 107 (CVE-2012-0065) Package: usbmuxd; Maintainer for usbmuxd is gtkpod Maintainers <pkg-gtkpod-devel@alioth-listsdebiannet>; Source for usbmuxd is src:usbmuxd (PTS, buildd, popcon) Reported by: Yves-Alexis Perez <corsac@debianorg> Date: Fri, ...

CWE-119 http://www.securityfocus.com/bid/51573 http://openwall.com/lists/oss-security/2012/01/19/26 http://secunia.com/advisories/47545 http://openwall.com/lists/oss-security/2012/01/19/25 https://bugs.gentoo.org/show_bug.cgi?id=399409 http://www.mandriva.com/security/advisories?name=MDVSA-2012:133 https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0228 http://www.mandriva.com/security/advisories?name=MDVSA-2013:133 https://exchange.xforce.ibmcloud.com/vulnerabilities/72546 http://git.marcansoft.com/?p=usbmuxd.git%3Ba=commitdiff%3Bh=f794991993af56a74795891b4ff9da506bc893e6 https://usn.ubuntu.com/1354-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-0065

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect