CVE-2012-0435

Severity

57%

Complexity

86%

Confidentiality

81%

SUSE WebYaST before 1.2 0.2.63-0.6.1 allows remote attackers to modify the hosts list, and subsequently conduct man-in-the-middle attacks, via a crafted /host request on TCP port 4984.

SUSE WebYaST before 1.2 0.2.63-0.6.1 allows remote attackers to modify the hosts list, and subsequently conduct man-in-the-middle attacks, via a crafted /host request on TCP port 4984.

CVSS 2.0 Base Score 5.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:N).

Overview

First reported 12 years ago

2013-01-26 21:55:00

Last updated 12 years ago

2013-01-28 05:00:00

Affected Software

SuSE WebYaST 1.2

1.2

References

SUSE-SU-2013:0053

http://support.novell.com/security/cve/CVE-2012-0435.html

VU#806908

US Government Resource

https://bugzilla.novell.com/show_bug.cgi?id=792712

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.