CVE-2012-2697Improper Input Validation in Autofs

CWE-20Improper Input Validation6 documents6 sources
Severity
4.9MEDIUMNVD
EPSS
0.1%
top 64.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian AutofsRedhat Enterprise Linux
Timeline
PublishedFeb 24
Latest updateMay 17

Description

Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux (RHEL) 5, allows local users to cause a denial of service (autofs crash and delayed mounts) or prevent "mount expiration" via unspecified vectors related to "using an LDAP-based automount map."

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages1 packages

debiandebian/autofs< autofs 5.0.6-1 (bookworm)

Also affects: Enterprise Linux 5

🔴Vulnerability Details

2
GHSA
GHSA-8cw5-3jc7-m8ff: Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux (RHEL) 5, allows local users to cause a denial of service (autofs crash and d2022-05-17
OSV
CVE-2012-2697: Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux (RHEL) 5, allows local users to cause a denial of service (autofs crash and d2013-02-24

📋Vendor Advisories

2
Red Hat
autofs: denial of service when using an LDAP-based automount map2013-01-07
Debian
CVE-2012-2697: autofs - Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux (RHEL) ...2012

💬Community

1
Bugzilla
CVE-2012-2697 autofs: denial of service when using an LDAP-based automount map2012-06-13