CVE-2012-4436

fwknop < 2.0.3 - Buffer Overflow via --last Command Line Argument

Title source: llm
STIX 2.1

Description

Buffer overflow in the run_last_args function in client/fwknop.c in fwknop before 2.0.3, when processing --last, might allow local users to cause a denial of service (client crash) and possibly execute arbitrary code via many .fwknop.run arguments.

References (4)

Core 4

Scores

EPSS 0.0066
EPSS Percentile 47.1%

Details

CWE
CWE-119
Status published
Products (3)
cipherdyne/fwknop 2.0
cipherdyne/fwknop 2.0.1
cipherdyne/fwknop < 2.0.2
Published Oct 22, 2012
Tracked Since Feb 18, 2026