CVE-2012-0806

Buffer overflow in Bip 0.8.8 and earlier might allow remote authenticated users to execute arbitrary code via vectors involving a series of TCP connections that triggers use of many open file descriptors.
Severity
UNKNOWN
AV:N/AC:L/Au:S/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
duckcorpbip
𝑥
≤ 0.8.8
duckcorpbip
0.7.0
duckcorpbip
0.7.1
duckcorpbip
0.7.2
duckcorpbip
0.7.3
duckcorpbip
0.7.4
duckcorpbip
0.7.5
duckcorpbip
0.8.0
duckcorpbip
0.8.0
duckcorpbip
0.8.0
duckcorpbip
0.8.1
duckcorpbip
0.8.2
duckcorpbip
0.8.3
duckcorpbip
0.8.4
duckcorpbip
0.8.5
duckcorpbip
0.8.6
duckcorpbip
0.8.7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
bip
bullseye
0.9.0~rc4-1
fixed
lenny
not-affected
bookworm
0.9.3-1
fixed
sid
0.9.3-1.1
fixed
trixie
0.9.3-1.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bip
saucy
not-affected
raring
not-affected
quantal
not-affected
precise
Fixed 0.8.8-1ubuntu0.2
released
oneiric
ignored
natty
ignored
maverick
ignored
lucid
ignored
hardy
ignored