CVE-2012-2375

MEDIUM Year: 2012
CVSS v2 Score
4.6
Medium
Weakness Type
CWE-189
View all →

Vulnerability Description

The __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the NFSv4 implementation in the Linux kernel before 3.3.2 uses an incorrect length variable during a copy operation, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words in an FATTR4_ACL reply. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-4131.

Related Vulnerabilities

CVE-2015-8396

CRITICAL
CVSS:10.0(Critical)

Integer overflow in the ImageRegionReader::ReadIntoBuffer function in MediaStorageAndFileFormat/gdcmImageRegionReader.cxx in Grassroots DICOM (aka GDCM) before 2.6.2 allows attackers to execute arbitr...

CWE-1892015

CVE-2007-1383

CRITICAL
CVSS:9.8(Critical)

Integer overflow in the 16 bit variable reference counter in PHP 4 allows context-dependent attackers to execute arbitrary code by overflowing this counter, which causes the same variable to be destro...

CWE-1892007

CVE-2011-2013

CRITICAL
CVSS:9.8(Critical)

Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code by s...

CWE-1892011

CVE-2014-9766

CRITICAL
CVSS:9.8(Critical)

Integer overflow in the create_bits function in pixman-bits-image.c in Pixman before 0.32.6 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code ...

CWE-1892014

CVE-2016-0859

CRITICAL
CVSS:9.8(Critical)

Integer overflow in the Kernel service in Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted RPC ...

CWE-1892016

CVE-2016-10145

CRITICAL
CVSS:9.8(Critical)

Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.

CWE-1892016