CVE-2012-3480

glibc 2.16 - Integer Overflow and Stack-Based Buffer Overflow in stdlib String Conversion Functions

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-3480. PoCs published by Joseph S. Myer.

AI-analyzed exploit summary This exploit triggers a stack-based buffer overflow in GNU glibc's strtod function by crafting a maliciously large exponent string. The overflow occurs due to inadequate boundary checks, potentially leading to arbitrary code execution or denial-of-service.

Description

Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Joseph S. Myer · clocallinux

https://www.exploit-db.com/exploits/37631

View Code ZIP pw:eip

This exploit triggers a stack-based buffer overflow in GNU glibc's strtod function by crafting a maliciously large exponent string. The overflow occurs due to inadequate boundary checks, potentially leading to arbitrary code execution or denial-of-service.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: GNU glibc (versions affected by CVE-2012-3480)

No auth needed

Prerequisites: Local access to a system with vulnerable glibc

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (16)

Core 16

Core References

Patch mailing-list x_refsource_mlist

http://sourceware.org/ml/libc-alpha/2012-08/msg00202.html

Patch x_refsource_misc

http://sourceware.org/bugzilla/show_bug.cgi?id=14459

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-1207.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-1208.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-1325.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-1262.html

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

http://lists.fedoraproject.org/pipermail/package-announce/2012-August/085190.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/84710

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/54982

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1027374

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-1589-1

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2012/08/13/4

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2012/08/13/6

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201503-04

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/50201

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/50422

Scores

EPSS 0.0099

EPSS Percentile 57.9%

Details

CWE

CWE-189

Status published

Products (1)

gnu/glibc 2.16

Published Aug 25, 2012

Tracked Since Feb 18, 2026