Unrated severityNVD Advisory· Published Jun 4, 2012· Updated Apr 29, 2026
CVE-2012-0862
CVE-2012-0862
Description
builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1.
Affected products
10cpe:2.3:a:xinetd:xinetd:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:xinetd:xinetd:*:*:*:*:*:*:*:*range: <=2.3.14
- cpe:2.3:a:xinetd:xinetd:2.3.10:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.11:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.12:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.13:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:xinetd:xinetd:2.3.9:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
13- lists.fedoraproject.org/pipermail/package-announce/2012-May/081428.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2012-May/081446.htmlnvd
- rhn.redhat.com/errata/RHSA-2013-1302.htmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.openwall.com/lists/oss-security/2012/05/09/5nvd
- www.openwall.com/lists/oss-security/2012/05/10/2nvd
- www.osvdb.org/81774nvd
- www.securityfocus.com/bid/53720nvd
- www.securitytracker.com/idnvd
- www.xinetd.orgnvd
- bugzilla.redhat.com/attachment.cginvd
- bugzilla.redhat.com/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/75965nvd
News mentions
0No linked articles in our index yet.