Integer Signedness Error in dtach 0.8 Allows Remote Information Disclosure

Integer Signedness Error in dtach 0.8 Allows Remote Information Disclosure

CVE-2012-3368 · LOW Severity

AV:N/AC:H/AU:N/C:P/I:N/A:N

Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an improper connection-close request, as demonstrated by running an IRC client in dtach.

Learn more about our Web Application Penetration Testing UK.