PT-2015-3536 · Openbsd+1 · Fastcgi+1

Joe

Published

2015-02-19

Updated

2025-01-17

CVE-2012-6687

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions FastCGI versions 2.4.0

Description The issue allows remote attackers to cause a denial of service, resulting in a segmentation fault and crash, by establishing a large number of connections.

Recommendations For FastCGI version 2.4.0, consider restricting the number of incoming connections to prevent the denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALT-PU-2024-4608

ALT-PU-2024-4616

ALT-PU-2024-4627

ALT-PU-2024-4871

AZL-34685

AZL-6418

CVE-2012-6687

DLA-430-1

DLA-431-1

MGASA-2015-0184

MGASA-2016-0089

OESA-2025-1041

Affected Products

Alt Linux

Fastcgi

PT-2015-3536 · Openbsd+1 · Fastcgi+1

CVE-2012-6687

Weakness Enumeration

Related Identifiers

Affected Products

References · 26