PT-2012-4753 · Tunnelblick · Tunnelblick

Kurt Seifried

Published

2012-08-26

Updated

2012-08-27

CVE-2012-3487

CVSS v2.0

1.2

Low

Vector

AV:L/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Tunnelblick versions 3.3beta20 and earlier

Description A race condition issue allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process.

Recommendations For Tunnelblick versions 3.3beta20 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CVE-2012-3487

Affected Products

Tunnelblick

PT-2012-4753 · Tunnelblick · Tunnelblick

CVE-2012-3487

Weakness Enumeration

Related Identifiers

Affected Products

References · 4