Unrated severityNVD Advisory· Published Jun 1, 2012· Updated Apr 29, 2026
CVE-2012-2944
CVE-2012-2944
Description
Buffer overflow in the addchar function in common/parseconf.c in upsd in Network UPS Tools (NUT) before 2.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (electric-power outage) via a long string containing non-printable characters.
Affected products
9cpe:2.3:a:networkupstools:nut:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:networkupstools:nut:*:*:*:*:*:*:*:*range: <=2.6.3-3
- cpe:2.3:a:networkupstools:nut:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:networkupstools:nut:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:networkupstools:nut:2.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:networkupstools:nut:2.6.0-1:*:*:*:*:*:*:*
- cpe:2.3:a:networkupstools:nut:2.6.0:pre1:*:*:*:*:*:*
- cpe:2.3:a:networkupstools:nut:2.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:networkupstools:nut:2.6.1-1:*:*:*:*:*:*:*
- cpe:2.3:a:networkupstools:nut:2.6.3-1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- alioth.debian.org/tracker/nvdExploit
- secunia.com/advisories/49348nvdVendor Advisory
- networkupstools.org/docs/user-manual.chunked/apis01.htmlnvd
- secunia.com/advisories/50389nvd
- trac.networkupstools.org/projects/nut/changeset/3633nvd
- www.debian.org/security/2012/dsa-2484nvd
- www.mandriva.com/security/advisoriesnvd
- www.osvdb.org/82409nvd
- www.securityfocus.com/bid/53743nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/75980nvd
- hermes.opensuse.org/messages/15514634nvd
News mentions
0No linked articles in our index yet.