Input validation error in ConnMan

#VU44066 Input validation error in ConnMan

Published: 2012-05-19 | Updated: 2020-08-11

Vulnerability identifier: #VU44066

Vulnerability risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2012-2322

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ConnMan
Universal components / Libraries / Libraries used by multiple products

Vendor: kernel.org

Description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Integer overflow in the dhcpv6_get_option function in gdhcp/client.c in ConnMan before 0.85 allows remote attackers to cause a denial of service (infinite loop and crash) via an invalid length value in a DHCP packet.

Mitigation
Install update from vendor's website.

Vulnerable software versions

ConnMan: 0.1 - 0.83

External links
http://git.kernel.org/?p=network/connman/connman.git;a=commitdiff;h=1d1a22fe586a455935483708fbe8eaeada79df7f
http://secunia.com/advisories/49033
http://secunia.com/advisories/49186
http://security.gentoo.org/glsa/glsa-201205-02.xml
http://www.openwall.com/lists/oss-security/2012/05/07/10
http://www.openwall.com/lists/oss-security/2012/05/07/2
http://www.openwall.com/lists/oss-security/2012/05/07/6
http://www.osvdb.org/81706
http://www.securityfocus.com/bid/53410
http://bugzilla.novell.com/show_bug.cgi?id=715172
http://exchange.xforce.ibmcloud.com/vulnerabilities/75420

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in aldebaran connman

Gentoo update for ConnMan