CVE-2012-3421
published 2012-08-27CVE-2012-3421: The pduread function in pdu.c in libpcp in Performance Co-Pilot (PCP) before 3.6.5 does not properly time out connections, which allows remote attackers to…
medium5CVSS 3.1
AVNACLAuNCNINAP
The pduread function in pdu.c in libpcp in Performance Co-Pilot (PCP) before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service (pmcd hang) by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | pcp | < pcp 3.6.5 (bookworm) | pcp 3.6.5 (bookworm) |
| opensuse | pcp | >= 0 < 3.6.5 | 3.6.5 |
| opensuse | pcp | >= 0 < 3.6.5 | 3.6.5 |
| opensuse | pcp | >= 0 < 3.6.5 | 3.6.5 |
| opensuse | pcp | >= 0 < 3.6.5 | 3.6.5 |
| sgi | performance_co-pilot | <= 3.6.4 | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
| sgi | performance_co-pilot | — | — |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM