CVE-2012-0862

描述

builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1.

受影響套件(1)

• Debian/xinetdfrom 0, < 1:2.3.14-7.1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-0862