Vulnerability Name:

CVE-2012-3410 (CCN-77551)

Assigned:2012-07-17
Published:2012-07-17
Updated:2017-08-29
Summary:Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properly handled when expanding the /dev/fd prefix.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: CONFIRM
Type: Patch
ftp://ftp.gnu.org/pub/gnu/bash/bash-4.2-patches/bash42-033

Source: MISC
Type: Patch
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681278

Source: MITRE
Type: CNA
CVE-2012-3410

Source: SECUNIA
Type: UNKNOWN
51086

Source: CCN
Type: SA52615
Oracle Solaris Multiple Vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-201210-05

Source: CCN
Type: GNU Project Web site
Bash

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2012:128

Source: MLIST
Type: UNKNOWN
[oss-security] 20120711 CVE Request: Overflow fix in bash 4.2 patch 33

Source: MLIST
Type: UNKNOWN
[oss-security] 20120712 Re: CVE Request: Overflow fix in bash 4.2 patch 33

Source: MLIST
Type: UNKNOWN
[oss-security] 20120712 Re: CVE Request: Overflow fix in bash 4.2 patch 33

Source: CCN
Type: Oracle CPUJul2016
Oracle Critical Patch Update Advisory - July 2016

Source: BID
Type: UNKNOWN
54937

Source: CCN
Type: BID-54937
GNU Bash Remote Stack Based Buffer Overflow Vulnerability

Source: CCN
Type: Oracle Security Blog, Mar 13, 2013
Multiple vulnerabilities in Thunderbird

Source: CCN
Type: Red Hat Bugzilla Bug 840091
CVE-2012-3410 bash: Stack-based buffer overflow (crash) when expanding /dev/fd file names

Source: XF
Type: UNKNOWN
bash-devfd-bo(77551)

Source: XF
Type: UNKNOWN
bash-devfd-bo(77551)

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2012:0898

Vulnerable Configuration:Configuration 1:
  • cpe:/a:gnu:bash:4.2:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:gnu:bash:4.2:*:*:*:*:*:*:*
  • AND
  • cpe:/o:oracle:solaris:11:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20123410
    V
    		CVE-2012-3410
    2022-05-20
    oval:org.opensuse.security:def:32240
    P
    		Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3) (Important)
    2021-12-14
    oval:org.opensuse.security:def:32164
    P
    		Security update for java-1_8_0-openjdk (Important)
    2021-08-20
    oval:org.opensuse.security:def:32980
    P
    		Security update for spice-vdagent (Moderate)
    2021-08-17
    oval:org.opensuse.security:def:32153
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-07-27
    oval:org.opensuse.security:def:32152
    P
    		Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
    2021-07-27
    oval:org.opensuse.security:def:32936
    P
    		Security update for shim (Important)
    2021-06-08
    oval:org.opensuse.security:def:33657
    P
    		Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:32913
    P
    		Security update for samba (Important)
    2021-05-04
    oval:org.opensuse.security:def:28931
    P
    		Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)
    2021-02-10
    oval:org.opensuse.security:def:28870
    P
    		Security update for spice-gtk (Important)
    2020-12-16
    oval:org.opensuse.security:def:32825
    P
    		Security update for mutt (Important)
    2020-12-07
    oval:org.opensuse.security:def:33618
    P
    		Security update for postgresql12 (Important)
    2020-12-04
    oval:org.opensuse.security:def:32768
    P
    		perl-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28435
    P
    		Security update for wireshark (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29569
    P
    		Security update for SDL (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32874
    P
    		gpg2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28576
    P
    		Security update for libotr
    2020-12-01
    oval:org.opensuse.security:def:28142
    P
    		Security update for java-1_7_1-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:28782
    P
    		Security update for lxc
    2020-12-01
    oval:org.opensuse.security:def:32468
    P
    		Security update for xorg-x11-libs (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28154
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32612
    P
    		w3m on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28350
    P
    		Recommended update for php53 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28492
    P
    		Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29605
    P
    		Security update for bash
    2020-12-01
    oval:org.opensuse.security:def:28728
    P
    		Security update for krb5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32374
    P
    		Security update for tiff (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28143
    P
    		Security update for java-1_7_1-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:28831
    P
    		Security update for sblim-sfcb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32525
    P
    		gstreamer-0_10-plugins-base on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28220
    P
    		Security update for libsamplerate (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28887
    P
    		Security update for compat-openssl097g (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:26821
    P
    		SUSE-SU-2014:1214-1 -- Security update for bash
    2014-11-10
    oval:com.ubuntu.precise:def:20123410000
    V
    		CVE-2012-3410 on Ubuntu 12.04 LTS (precise) - negligible.
    2012-08-27
    oval:com.ubuntu.trusty:def:20123410000
    V
    		CVE-2012-3410 on Ubuntu 14.04 LTS (trusty) - negligible.
    2012-08-27
    BACK
    gnu bash 4.2
    gnu bash 4.2
    oracle solaris 11