CVE-2012-0036

Risk Scores

Affected Products

Exploit Intelligence

• :muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle: (github-poc)
• :muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle: (github-poc)
• :muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle: (github-poc)
• :muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle: (github-poc)
• :muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle: (github-poc)
• :muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle: (github-poc)
• curl mishandles `%0c%0b` sequences in HTTP responses leading to CRLF confusions, Headers and Cookies Injection (hackerone)
• curl mishandles `%0c%0b` sequences in HTTP responses leading to CRLF confusions, Headers and Cookies Injection (hackerone)
• curl mishandles `%0c%0b` sequences in HTTP responses leading to CRLF confusions, Headers and Cookies Injection (hackerone)
• glcve_test.go (github-poc)

…and 5 more exploits

Timeline

• CVE Published
• Feb 4, 2022 EPSS Score
• Mar 29, 2022 EPSS Score
• Jul 12, 2022 EPSS Score
• Sep 4, 2022 EPSS Score
• Dec 18, 2022 EPSS Score
• Feb 9, 2023 EPSS Score
• Apr 2, 2023 EPSS Score
• May 25, 2023 EPSS Score
• Sep 7, 2023 EPSS Score
• Oct 30, 2023 EPSS Score
• Dec 22, 2023 EPSS Score

References

• https://cert.ssi.gouv.fr/avis/CERTA-2012-AVI-190/ advisory
• https://cert.ssi.gouv.fr/avis/CERTA-2012-AVI-272/ advisory
• https://support.apple.com/kb/HT5281 advisory
• https://cert.ssi.gouv.fr/avis/CERTA-2012-AVI-358/ advisory
• http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041 advisory