CVE-2012-3549

Freebsd - Denial of Service

Title source: rule

Description

The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted ASCONF chunk.

Exploits (1)

exploitdb WORKING POC

by Shaun Colley · cdosfreebsd

https://www.exploit-db.com/exploits/20226

View Code ZIP pw:eip

References (5)

[Issue Tracking] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686962

[Exploit] http://www.exploit-db.com/exploits/20226

[Exploit] http://www.securityfocus.com/bid/54797

[Mailing List] http://www.openwall.com/lists/oss-security/2012/08/28/9

[Mailing List] http://www.openwall.com/lists/oss-security/2012/08/29/6

Scores

EPSS 0.1221

EPSS Percentile 93.9%

Details

Status published

Products (1)

freebsd/freebsd 8.2

Published Oct 09, 2012

Tracked Since Feb 18, 2026