CVE-2012-0804

NONE EPSS 94.3%
Published May 29, 201214y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 29, 2012 14y ago
Last Modified Jun 16, 2026 2w ago

Description

Heap-based buffer overflow in the proxy_connect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTTP response.

Threat Intelligence

EPSS Exploit Probability
94.3% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 2

VendorProductVersionRange
cvscvs1.11any
cvscvs1.12any

References 15

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.