CVE-2012-6128

EPSS 0.97% · P77 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-6128

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple stack-based buffer overflows in http.c in OpenConnect before 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie list in a response.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenConnect VPN Gateway 基于栈的缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenConnect是思科AnyConnect VPN的一个开放客户端。 OpenConnect 4.08之前版本中的http.c中存在多个基于栈的缓冲区溢出漏洞。通过在响应中加入较长的（1）主机名，（2）路径，或者（3）cookie列表，远程VPN网关攻击者可利用该漏洞导致拒绝服务（应用程序崩溃）。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-6128

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-6128

请登录查看更多情报信息。

🔗 http://www.infradead.org/openconnect/changelog.htmlx_refsource_CONFIRM
🔗 http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/26f752c3dbf69227679fc6bebb4ae071aecec491x_refsource_CONFIRM
🔗 https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0060x_refsource_CONFIRM
🔗 http://www.securityfocus.com/bid/57884vdb-entryx_refsource_BID
🔗 http://www.debian.org/security/2013/dsa-2623vendor-advisoryx_refsource_DEBIAN
🔗 http://www.mandriva.com/security/advisories?name=MDVSA-2013:108vendor-advisoryx_refsource_MANDRIVA
🔗 http://lists.opensuse.org/opensuse-updates/2013-06/msg00115.htmlvendor-advisoryx_refsource_SUSE
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/82058vdb-entryx_refsource_XF
🔗 http://www.openwall.com/lists/oss-security/2013/02/12/7mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-6128

Same Patch Batch · n/a · 2013-02-24 · 34 CVEs total

CVE-2013-0108		Honeywell Enterprise Buildings Integrator ActiveX控件代码注入漏洞
CVE-2012-4704		3S CoDeSys Gateway Server 数组索引漏洞
CVE-2012-4705		3S CoDeSys Gateway Server 目录遍历漏洞
CVE-2012-4706		3S CoDeSys Gateway Server 数字错误漏洞
CVE-2012-4707		3S CoDeSys Gateway Server 内存破坏漏洞
CVE-2012-4708		3S CoDeSys Gateway Server 缓冲区溢出漏洞
CVE-2012-6273		BigAntSoft BigAnt IM Server SQL注入漏洞
CVE-2012-6274		BigAntSoft BigAnt IM Server 安全绕过漏洞
CVE-2012-6275		BigAntSoft BigAnt IM Server 多个基于栈的缓冲区溢出漏洞
CVE-2013-0247		OpenStack Keystone 拒绝服务漏洞
CVE-2013-0113		Nuance PDF Reader/PDF Viewer Plus 多个未明内存破坏漏洞
CVE-2013-0118		CS-Cart 配置错误漏洞
CVE-2013-0120		Dell PowerConnect 6248P 网络接口输入验证漏洞
CVE-2013-0785		Bugzilla 跨站脚本漏洞
CVE-2013-0786		Bugzilla 信息泄露漏洞
CVE-2012-0439		Novell GroupWise Client 不可信指针引用漏洞
CVE-2013-0804		Novell GroupWise Client 任意代码执行漏洞
CVE-2012-5658		Red Hat OpenShift Origin ‘rhc-chk.rb’加密问题漏洞
CVE-2013-0220		SSSD 缓冲区错误漏洞
CVE-2013-0219		SSSD 权限许可和访问控制问题漏洞

Showing top 20 of 34 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-6128

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-6128

I. Basic Information for CVE-2012-6128

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-6128

III. Intelligence Information for CVE-2012-6128

Same Patch Batch · n/a · 2013-02-24 · 34 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-6128

Leave a comment