Vulnerability Details CVE-2012-0051
Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutable files or directories upon retrieval.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 79.3%
CVSS Severity
CVSS v3 Score 7.4
CVSS v2 Score 5.8
References
- http://www.openwall.com/lists/oss-security/2012/01/15/11
- http://www.openwall.com/lists/oss-security/2012/01/26/7
- http://www.openwall.com/lists/oss-security/2012/01/26/8
- http://www.openwall.com/lists/oss-security/2012/01/26/9
- https://security-tracker.debian.org/tracker/CVE-2012-0051
- https://tahoe-lafs.org/trac/tahoe-lafs/ticket/1654
- http://www.openwall.com/lists/oss-security/2012/01/15/11
- http://www.openwall.com/lists/oss-security/2012/01/26/7
- http://www.openwall.com/lists/oss-security/2012/01/26/8
- http://www.openwall.com/lists/oss-security/2012/01/26/9
- https://security-tracker.debian.org/tracker/CVE-2012-0051
- https://tahoe-lafs.org/trac/tahoe-lafs/ticket/1654
Products affected by CVE-2012-0051
-
cpe:2.3:a:tahoe-lafs:tahoe-lafs:1.9.0
-
cpe:2.3:o:debian:debian_linux:10.0
-
cpe:2.3:o:debian:debian_linux:8.0
-
cpe:2.3:o:debian:debian_linux:9.0