CVE-2012-3368
CVE-2012-3368
Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an improper connection-close request, as demonstrated by running an IRC client in dtach.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=625302https://bugzilla.redhat.com/show_bug.cgi?id=812551https://bugzilla.redhat.com/show_bug.cgi?id=835849http://sourceforge.net/tracker/download.php?group_id=36489&atid=417357&file_id=441195&aid=3517812http://sourceforge.net/tracker/?func=detail&aid=3517812&group_id=36489&atid=417357