← back
CVE-2012-4415

CVE-2012-4415

EPSS 13.6%
Stack-based buffer overflow in the guac_client_plugin_open function in libguac in Guacamole before 0.6.3 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long protocol name.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/37788unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2012-09/0107.htmlhttp://guac-dev.org/trac/changeset/7dcefa744b4a38825619c00ae8b47e5bae6e38c0/libguachttp://lists.fedoraproject.org/pipermail/package-announce/2012-September/088031.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-September/088218.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-September/088272.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=856743http://www.openwall.com/lists/oss-security/2012/09/11/3http://www.openwall.com/lists/oss-security/2012/09/11/7http://www.securityfocus.com/bid/55497