Xinetd · Xinetd · CVE-2012-0862
**Name of the Vulnerable Software and Affected Versions**
Xinetd versions prior to 2.3.15
**Description**
The issue allows remote attackers to bypass intended access restrictions. This occurs because builtins.c in Xinetd does not check the service type when the tcpmux-server service is enabled, exposing all enabled services. Attackers can exploit this by sending a request to the tcpmux port.
**Recommendations**
For versions prior to 2.3.15, update to version 2.3.15 or later to resolve the issue. As a temporary workaround, consider disabling the tcpmux-server service to minimize the risk of exploitation.