Denial of Service Vulnerability in pduread function in libpcp

Denial of Service Vulnerability in pduread function in libpcp

CVE-2012-3421 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The pduread function in pdu.c in libpcp in Performance Co-Pilot (PCP) before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service (pmcd hang) by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."

Learn more about our Web Application Penetration Testing UK.