Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
BID:53743
Info
Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
| Bugtraq ID: | 53743 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2012-2944 |
| Remote: | Yes |
| Local: | No |
| Published: | May 29 2012 12:00AM |
| Updated: | Sep 27 2012 09:30PM |
| Credit: | Sebastian Pohle |
| Vulnerable: |
Ubuntu Ubuntu Linux 12.04 LTS i386 Ubuntu Ubuntu Linux 12.04 LTS amd64 Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 Ubuntu Ubuntu Linux 11.04 powerpc Ubuntu Ubuntu Linux 11.04 i386 Ubuntu Ubuntu Linux 11.04 ARM Ubuntu Ubuntu Linux 11.04 amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 Mandriva Linux Mandrake 2011 x86_64 Mandriva Linux Mandrake 2011 Mandriva Linux Mandrake 2010.1 x86_64 Mandriva Linux Mandrake 2010.1 MandrakeSoft Enterprise Server 5 x86_64 MandrakeSoft Enterprise Server 5 Gentoo Linux Eaton Corporation Network UPS Tools (NUT) 2.6.3 Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 |
| Not Vulnerable: |
Eaton Corporation Network UPS Tools (NUT) 2.6.4 |
Discussion
Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
Network UPS Tools (NUT) is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers.
An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
Versions prior to Network UPS Tools (NUT) 2.6.4 are vulnerable.
Network UPS Tools (NUT) is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers.
An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
Versions prior to Network UPS Tools (NUT) 2.6.4 are vulnerable.
Exploit / POC
Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
Solution:
Updates are available. Please see the references for more information.
Mandriva Linux Mandrake 2010.1
MandrakeSoft Enterprise Server 5 x86_64
Mandriva Linux Mandrake 2011 x86_64
Mandriva Linux Mandrake 2011
MandrakeSoft Enterprise Server 5
Mandriva Linux Mandrake 2010.1 x86_64
Solution:
Updates are available. Please see the references for more information.
Mandriva Linux Mandrake 2010.1
-
Mandriva libupsclient1-2.4.3-3.1mdv2010.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-2.4.3-3.1mdv2010.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-cgi-2.4.3-3.1mdv2010.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-devel-2.4.3-3.1mdv2010.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-drivers-hal-2.4.3-3.1mdv2010.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-server-2.4.3-3.1mdv2010.2.i586.rpm
http://www.mandriva.com/en/downloads/
MandrakeSoft Enterprise Server 5 x86_64
-
Mandriva lib64upsclient1-2.2.2-5.1mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-2.2.2-5.1mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-cgi-2.2.2-5.1mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-devel-2.2.2-5.1mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-drivers-hal-2.2.2-5.1mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-server-2.2.2-5.1mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/
Mandriva Linux Mandrake 2011 x86_64
-
Mandriva lib64upsclient1-2.6.1-1.1-mdv2011.0.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-2.6.1-1.1-mdv2011.0.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-cgi-2.6.1-1.1-mdv2011.0.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-devel-2.6.1-1.1-mdv2011.0.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-drivers-hal-2.6.1-1.1-mdv2011.0.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-server-2.6.1-1.1-mdv2011.0.x86_64.rpm
http://www.mandriva.com/en/downloads/
Mandriva Linux Mandrake 2011
-
Mandriva libupsclient1-2.6.1-1.1-mdv2011.0.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-2.6.1-1.1-mdv2011.0.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-cgi-2.6.1-1.1-mdv2011.0.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-devel-2.6.1-1.1-mdv2011.0.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-drivers-hal-2.6.1-1.1-mdv2011.0.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-server-2.6.1-1.1-mdv2011.0.i586.rpm
http://www.mandriva.com/en/downloads/
MandrakeSoft Enterprise Server 5
-
Mandriva libupsclient1-2.2.2-5.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-2.2.2-5.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-cgi-2.2.2-5.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-devel-2.2.2-5.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-drivers-hal-2.2.2-5.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-server-2.2.2-5.1mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/
Mandriva Linux Mandrake 2010.1 x86_64
-
Mandriva lib64upsclient1-2.4.3-3.1mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-2.4.3-3.1mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-cgi-2.4.3-3.1mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-devel-2.4.3-3.1mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-drivers-hal-2.4.3-3.1mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva nut-server-2.4.3-3.1mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/
References
Network UPS Tools (NUT) 'addchar()' Function Buffer Overflow Vulnerability
References:
References:
- Fix CVE-2012-2944: upsd can be remotely crashed (aquette)
- Network UPS Tools (NUT) Homepage (Eaton Corporation)