CVE-2013-4342
Description
xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
15.271
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2013:1409) Moderate: xinetd security update xinetd-2.3.14-20.el5_10.i386.rpm | Linux |
| (RHSA-2013:1409) Moderate: xinetd security update xinetd-2.3.14-20.el5_10.x86_64.rpm | Linux |
| (RHSA-2013:1409) Moderate: xinetd security update xinetd-2.3.14-39.el6_4.i686.rpm | Linux |
| (RHSA-2013:1409) Moderate: xinetd security update xinetd-2.3.14-39.el6_4.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234