CVE-2011-5280 - Vulnerability Details - OpenCVE

Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00583.

Key SSVC decision points have not yet been added.

Vendors	Products
Universityofcalifornia	Boinc Client

Configuration 1 [-]

OR	cpe:2.3:a:universityofcalifornia:boinc_client:6.13.0:::::::*
	cpe:2.3:a:universityofcalifornia:boinc_client:6.13.1:::::::*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2011-5179	Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=5b04b249db166ec38c1ee99a9eadcaa300c0f454
http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7
http://www.openwall.com/lists/oss-security/2013/04/28/3

History

Tue, 08 Jul 2025 18:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Universityofcalifornia Universityofcalifornia boinc Client
CPEs	cpe:2.3:a:rom_walton:boinc:6.13.0:::::::* cpe:2.3:a:rom_walton:boinc:6.13.1:::::::*	cpe:2.3:a:universityofcalifornia:boinc_client:6.13.0:::::::* cpe:2.3:a:universityofcalifornia:boinc_client:6.13.1:::::::*
Vendors & Products	Rom Walton Rom Walton boinc	Universityofcalifornia Universityofcalifornia boinc Client

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-06-02T15:00:00Z

Updated: 2024-09-17T04:14:28.124Z

Reserved: 2014-06-02T00:00:00Z

Link: CVE-2011-5280

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2014-06-02T15:55:07.807

Modified: 2025-07-08T17:33:43.070

Link: CVE-2011-5280

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2014-06-02T15:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20130428 Multiple vulnerabilities in BOINC", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2013/04/28/3"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=5b04b249db166ec38c1ee99a9eadcaa300c0f454"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-5280", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20130428 Multiple vulnerabilities in BOINC", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2013/04/28/3"}, {"name": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git;a=commitdiff;h=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7", "refsource": "CONFIRM", "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git;a=commitdiff;h=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7"}, {"name": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git;a=commitdiff;h=5b04b249db166ec38c1ee99a9eadcaa300c0f454", "refsource": "CONFIRM", "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git;a=commitdiff;h=5b04b249db166ec38c1ee99a9eadcaa300c0f454"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T00:30:47.033Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20130428 Multiple vulnerabilities in BOINC", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2013/04/28/3"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=5b04b249db166ec38c1ee99a9eadcaa300c0f454"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-5280", "datePublished": "2014-06-02T15:00:00Z", "dateReserved": "2014-06-02T00:00:00Z", "dateUpdated": "2024-09-17T04:14:28.124Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:universityofcalifornia:boinc_client:6.13.0:*:*:*:*:*:*:*", "matchCriteriaId": "01464AAC-49E5-4224-9C0E-E7F7C46CD11D", "vulnerable": true}, {"criteria": "cpe:2.3:a:universityofcalifornia:boinc_client:6.13.1:*:*:*:*:*:*:*", "matchCriteriaId": "7DE986A5-B8D0-460D-8172-8EA0D58060D1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de buffer basado en pila en BOINC 6.13.x permiten a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de un trickle-up largo hacia (1) client/cs_trickle.cpp o (2) db/db_base.cpp."}], "id": "CVE-2011-5280", "lastModified": "2025-07-08T17:33:43.070", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-06-02T15:55:07.807", "references": [{"source": "cve@mitre.org", "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=5b04b249db166ec38c1ee99a9eadcaa300c0f454"}, {"source": "cve@mitre.org", "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2013/04/28/3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=5b04b249db166ec38c1ee99a9eadcaa300c0f454"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2013/04/28/3"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}