CVE-2012-6687

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2012-6687
FastCGI (aka fcgi and libfcgi) 2.4.0 allows remote attackers to cause a denial of service (segmentation fault and crash) via a large number of connections.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://advisories.mageia.org/MGASA-2015-0184.html
http://www.openwall.com/lists/oss-security/2015/02/06/4
http://www.openwall.com/lists/oss-security/2015/02/07/4
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681591
https://bugs.launchpad.net/ubuntu/+source/libfcgi/+bug/933417
https://bugzilla.redhat.com/show_bug.cgi?id=1189958
https://exchange.xforce.ibmcloud.com/vulnerabilities/100696
http://advisories.mageia.org/MGASA-2015-0184.html
http://www.openwall.com/lists/oss-security/2015/02/06/4
http://www.openwall.com/lists/oss-security/2015/02/07/4
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681591
https://bugs.launchpad.net/ubuntu/+source/libfcgi/+bug/933417
https://bugzilla.redhat.com/show_bug.cgi?id=1189958
https://exchange.xforce.ibmcloud.com/vulnerabilities/100696
Configurations

Configuration 1 (hide)

cpe:2.3:a:fastcgi:fcgi:2.4.0:*:*:*:*:*:*:*
History

21 Nov 2024, 01:46

Type Values Removed Values Added
References () http://advisories.mageia.org/MGASA-2015-0184.html - () http://advisories.mageia.org/MGASA-2015-0184.html -
References () http://www.openwall.com/lists/oss-security/2015/02/06/4 - () http://www.openwall.com/lists/oss-security/2015/02/06/4 -
References () http://www.openwall.com/lists/oss-security/2015/02/07/4 - () http://www.openwall.com/lists/oss-security/2015/02/07/4 -
References () https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681591 - () https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681591 -
References () https://bugs.launchpad.net/ubuntu/+source/libfcgi/+bug/933417 - () https://bugs.launchpad.net/ubuntu/+source/libfcgi/+bug/933417 -
References () https://bugzilla.redhat.com/show_bug.cgi?id=1189958 - () https://bugzilla.redhat.com/show_bug.cgi?id=1189958 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/100696 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/100696 -
Information

Published : 2015-02-19 15:59

Updated : 2025-04-12 10:46

NVD link : CVE-2012-6687

Mitre link : CVE-2012-6687

CVE.ORG link : CVE-2012-6687

JSON object : View

Products Affected

fastcgi

  • fcgi
CWE
CWE-20

Improper Input Validation