CVE-2013-0288
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2013-0288
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer overflow related to incorrect use of the FD_SET macro.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
nss-pam-ldapd 缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
nss-pam-ldapd是用于在unix系统上对LDAP服务器进行身份和身份验证管理的工具。 nss-pam-ldapd 0.7.18和之前版本以及0.8.11版本存在缓冲区错误漏洞,该漏洞源于应用程序复制到不充分大小缓冲区之前没有对用户提供的数据进行正确边界值校验。攻击者利用该漏洞在受影响应用程序上下文中执行任意代码。失败的攻击尝试将导致拒绝服务状态。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2013-0288
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2013-0288
请登录查看更多情报信息。
- 🔗 https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0071x_refsource_CONFIRM
- 🔗 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0288x_refsource_MISC
- 🔗 http://www.mandriva.com/security/advisories?name=MDVSA-2013:106vendor-advisoryx_refsource_MANDRIVA
- 🔗 http://lists.fedoraproject.org/pipermail/package-announce/2013-February/099438.htmlvendor-advisoryx_refsource_FEDORA
- 🔗 http://lists.arthurdejong.org/nss-pam-ldapd-announce/2013/msg00001.htmlmailing-listx_refsource_MLIST
- https://nvd.nist.gov/vuln/detail/CVE-2013-0288
Same Patch Batch · n/a · 2013-03-04 · 18 CVEs total
| CVE-2013-0910 | Google Chrome 访问绕过漏洞 | |
| CVE-2013-1493 | Oracle Java SE 2D组件远程代码执行漏洞 | |
| CVE-2013-0809 | Oracle Java SE 2D组件未明安全漏洞 | |
| CVE-2013-1775 | Todd Miller Sudo 本地验证绕过漏洞 | |
| CVE-2013-0292 | dbus-glib 本地权限提升漏洞 | |
| CVE-2013-0198 | Dnsmasq 输入验证错误漏洞 | |
| CVE-2012-3411 | Dnsmasq 远程拒绝服务漏洞 | |
| CVE-2011-4355 | GNU gdb 权限许可和访问控制问题漏洞 | |
| CVE-2013-0911 | Google Chrome 目录遍历漏洞 | |
| CVE-2013-0902 | Google Chrome 框架加载器安全漏洞 | |
| CVE-2013-0909 | Google Chrome XSS Auditor敏感信息漏洞 | |
| CVE-2013-0908 | Google Chrome 安全漏洞 | |
| CVE-2013-0907 | Google Chrome 竞争条件漏洞 | |
| CVE-2013-0906 | Google Chrome IndexedDB实现拒绝服务漏洞 | |
| CVE-2013-0905 | Google Chrome 释放后重用漏洞 | |
| CVE-2013-0904 | Google Chrome Web Audio实现拒绝服务漏洞 | |
| CVE-2013-0903 | Google Chrome 释放后重用漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8747
Z-BlogPHP Commend Approval c_system_event.php CheckComment i - CVE-2026-8746
Open5GS NRF nghttp2-server.c discover_handler use after free - CVE-2026-8745
Open5GS AUSF nausf-handler.c ogs_timer_add denial of service - CVE-2026-8744
Open5GS NRF context.c ogs_sbi_nf_service_add denial of servi - CVE-2026-8743
Open5GS AMF/MME context.c ran_ue_find_by_amf_ue_ngap_id impr
V. Comments for CVE-2013-0288
No comments yet