Input Variable Quoting Flaw in Fail2ban Affects Security Actions
CVE-2012-5642

Currently unrated

Key Information:

Vendor

Fail2ban

Status
Fail2ban
Vendor
CVE Published:
31 December 2012

What is CVE-2012-5642?

An input variable quoting flaw exists in Fail2ban versions prior to 0.8.8, specifically in the server/action.py component. This vulnerability can be exploited by remote attackers who provide crafted content within the '' tag. If exploited, this can lead to the triggering of unsafe behaviors in custom action files, potentially compromising system security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.openwall.com/lists/oss-security/2012/12/17/2
mailing-listx_refsource_MLIST
https://github.com/fail2ban/fail2ban/commit/83109bc
x_refsource_CONFIRM
http://sourceforge.net/mailarchive/message.php?msg_id=301...
mailing-listx_refsource_MLIST

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.