CVE-2012-4556

{"id": "CVE-2012-4556", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-01-04T22:55:02.040", "references": [{"url": "http://rhn.redhat.com/errata/RHSA-2012-1550.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/51482", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/56843", "source": "secalert@redhat.com"}, {"url": "http://www.securitytracker.com/id?1027846", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=869579", "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2012-1550.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/51482", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/56843", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1027846", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=869579", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "The token processing system (pki-tps) in Red Hat Certificate System (RHCS) before 8.1.3 allows remote attackers to cause a denial of service (Apache httpd web server child process restart) via certain unspecified empty search fields in a user certificate search query."}, {"lang": "es", "value": "El proceso de tokens en sistemas (pki-tps) en Red Hat Certificate System (RHCS) anteriores a v8.1.3 permite a atacantes remotos a provocar una denegaci\u00f3n de servicio (reinicio del proceso hijo del servidor httpd del servidor Apache) a trav\u00e9s de ciertos campos de b\u00fasqueda una petici\u00f3n de b\u00fasqueda de certificados."}], "lastModified": "2024-11-21T01:43:07.730", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:redhat:certificate_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AAB4016-809B-4BF9-875C-18B261050AA9", "versionEndIncluding": "8.1.1"}, {"criteria": "cpe:2.3:a:redhat:certificate_system:7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A94B7103-11B7-4B1E-AE02-86210F9CCCAA"}, {"criteria": "cpe:2.3:a:redhat:certificate_system:7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27FE079E-FB15-443C-BE2E-1D4C940BB8C0"}, {"criteria": "cpe:2.3:a:redhat:certificate_system:7.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2654E6A-190C-4D5C-ABC0-89011DD8E293"}, {"criteria": "cpe:2.3:a:redhat:certificate_system:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "969F1FDC-EB66-4758-B619-C48CA1E5B1AC"}, {"criteria": "cpe:2.3:a:redhat:certificate_system:8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25F5AA3E-5776-4B66-A2B7-78A95C37581A"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}