QwikSec

Security Database

CVE

CWE

Training

CVE-2012-3368

Published: Jul 3, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an improper connection-close request, as demonstrated by running an IRC client in dtach.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.redhat.com/show_bug.cgi?id=812551

x_refsource_CONFIRM

http://sourceforge.net/tracker/download.php?group_id=36489&atid=417357&file_id=441195&aid=3517812

x_refsource_CONFIRM

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=625302

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=835849

x_refsource_CONFIRM

http://sourceforge.net/tracker/?func=detail&aid=3517812&group_id=36489&atid=417357

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.