CVE-2012-4512 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.8 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 92%

Vendor	Product	Version
kde	kde	4.7.3
redhat	enterprise_linux	6.0
redhat	enterprise_linux_desktop	6.0
redhat	enterprise_linux_server_eus	6.3
redhat	enterprise_linux_workstation	6.0

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

kde-baseapps

zesty	not-affected
yakkety	ignored
xenial	not-affected
wily	ignored
vivid	ignored
utopic	ignored
trusty	dne
saucy	ignored
raring	ignored
quantal	ignored
precise	ignored
oneiric	ignored
natty	dne
lucid	dne
hardy	dne

kdebase

zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
utopic	dne
trusty	dne
saucy	dne
raring	dne
quantal	dne
precise	dne
oneiric	dne
natty	ignored
lucid	ignored
hardy	ignored

Known Exploits!

Common Weakness Enumeration

CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')
The program allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

References

http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html

http://em386.blogspot.com/2010/12/webkit-css-type-confusion.html

http://quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=a872c8a969a8bd3706253d6ba24088e4f07f3352

http://rhn.redhat.com/errata/RHSA-2012-1416.html

http://rhn.redhat.com/errata/RHSA-2012-1418.html

http://secunia.com/advisories/51097

http://secunia.com/advisories/51145

http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc

http://www.openwall.com/lists/oss-security/2012/10/11/11

http://www.openwall.com/lists/oss-security/2012/10/30/6

http://www.securitytracker.com/id?1027709

http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html

http://em386.blogspot.com/2010/12/webkit-css-type-confusion.html

http://quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=a872c8a969a8bd3706253d6ba24088e4f07f3352

http://rhn.redhat.com/errata/RHSA-2012-1416.html

http://rhn.redhat.com/errata/RHSA-2012-1418.html

http://secunia.com/advisories/51097

http://secunia.com/advisories/51145

http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc

http://www.openwall.com/lists/oss-security/2012/10/11/11

http://www.openwall.com/lists/oss-security/2012/10/30/6

http://www.securitytracker.com/id?1027709