Plaintext Command Injection Vulnerability in INN NNRPD
CVE-2012-3523

Currently unrated

Key Information:

Vendor

Isc
Status
Inn
Vendor
CVE Published:
11 November 2012

What is CVE-2012-3523?

The STARTTLS implementation in the nnrpd server of INN prior to version 2.5.3 suffers from improper I/O buffering restrictions. This flaw allows an attacker to exploit the encryption setup and execute arbitrary commands during an established TLS session. By injecting commands in cleartext form, attackers may manipulate the communication flow and potentially compromise sensitive data, thus enabling a type of attack that resembles typical man-in-the-middle exploitation techniques.

References

http://www.mandriva.com/security/advisories?name=MDVSA-20...
vendor-advisoryx_refsource_MANDRIVA
http://secunia.com/advisories/50661
third-party-advisoryx_refsource_SECUNIA
http://lists.opensuse.org/opensuse-updates/2012-09/msg000...
vendor-advisoryx_refsource_SUSE

EPSS Score

18% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2012-3523 : Plaintext Command Injection Vulnerability in INN NNRPD