CVE-2012-0862
EPSS 0.53%Published: 6/4/2012Modified: 4/28/2026
Description
builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1.
Affected packages (1)
- Debian/xinetdfrom 0, < 1:2.3.14-7.1