Unrated severityNVD Advisory· Published Jan 27, 2012· Updated Apr 29, 2026
CVE-2012-0806
CVE-2012-0806
Description
Buffer overflow in Bip 0.8.8 and earlier might allow remote authenticated users to execute arbitrary code via vectors involving a series of TCP connections that triggers use of many open file descriptors.
Affected products
17cpe:2.3:a:duckcorp:bip:*:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:duckcorp:bip:*:*:*:*:*:*:*:*range: <=0.8.8
- cpe:2.3:a:duckcorp:bip:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.0:rc0:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.5:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.6:*:*:*:*:*:*:*
- cpe:2.3:a:duckcorp:bip:0.8.7:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- bugs.debian.org/cgi-bin/bugreport.cginvdPatch
- openwall.com/lists/oss-security/2012/01/24/10nvdPatch
- projects.duckcorp.org/issues/269nvdPatch
- projects.duckcorp.org/projects/bip/repository/revisions/222a33cb84a2e52ad55a88900b7895bf9dd0262cnvdPatch
- secunia.com/advisories/47679nvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2012-February/072752.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2012-February/072767.htmlnvd
- openwall.com/lists/oss-security/2012/01/24/4nvd
- www.mandriva.com/security/advisoriesnvd
News mentions
0No linked articles in our index yet.