{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87273?format=json","vulnerability_id":"VCID-4vr2-rn4g-bbep","summary":"rsyslog: parseLegacySyslogMsg off-by-two buffer overflow","aliases":[{"alias":"CVE-2011-3200"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/938028?format=json","purl":"pkg:deb/debian/rsyslog@5.8.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@5.8.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/571452?format=json","purl":"pkg:deb/debian/rsyslog@5.8.11-3%2Bdeb7u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2vuy-ga2a-2ke4"},{"vulnerability":"VCID-7eg3-vksv-9bga"},{"vulnerability":"VCID-8mwn-2k1d-rkfz"},{"vulnerability":"VCID-96hb-thus-r3f2"},{"vulnerability":"VCID-g5b3-53m2-yug1"},{"vulnerability":"VCID-qh6a-u11q-g3gp"},{"vulnerability":"VCID-s9gb-bjme-gkaf"},{"vulnerability":"VCID-ybfq-unp3-dbav"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@5.8.11-3%252Bdeb7u2"},{"url":"http://public2.vulnerablecode.io/api/packages/938023?format=json","purl":"pkg:deb/debian/rsyslog@8.2102.0-2%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2102.0-2%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/938021?format=json","purl":"pkg:deb/debian/rsyslog@8.2302.0-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2302.0-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/938026?format=json","purl":"pkg:deb/debian/rsyslog@8.2504.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2504.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/938024?format=json","purl":"pkg:deb/debian/rsyslog@8.2512.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2512.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/938025?format=json","purl":"pkg:deb/debian/rsyslog@8.2602.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2602.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1076122?format=json","purl":"pkg:deb/debian/rsyslog@8.2604.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2604.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1103062?format=json","purl":"pkg:deb/debian/rsyslog@8.2604.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2604.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1104254?format=json","purl":"pkg:deb/debian/rsyslog@8.2604.0-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2604.0-4%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/571449?format=json","purl":"pkg:deb/debian/rsyslog@3.18.6-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2vuy-ga2a-2ke4"},{"vulnerability":"VCID-4vr2-rn4g-bbep"},{"vulnerability":"VCID-7eg3-vksv-9bga"},{"vulnerability":"VCID-8mwn-2k1d-rkfz"},{"vulnerability":"VCID-96hb-thus-r3f2"},{"vulnerability":"VCID-cbts-ng32-67e7"},{"vulnerability":"VCID-cq52-ykyq-qug5"},{"vulnerability":"VCID-g5b3-53m2-yug1"},{"vulnerability":"VCID-gg4f-gzty-y7e1"},{"vulnerability":"VCID-pgy6-vbk7-hkg8"},{"vulnerability":"VCID-qh6a-u11q-g3gp"},{"vulnerability":"VCID-s9gb-bjme-gkaf"},{"vulnerability":"VCID-ybfq-unp3-dbav"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@3.18.6-4"},{"url":"http://public2.vulnerablecode.io/api/packages/571450?format=json","purl":"pkg:deb/debian/rsyslog@4.6.4-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2vuy-ga2a-2ke4"},{"vulnerability":"VCID-4vr2-rn4g-bbep"},{"vulnerability":"VCID-7eg3-vksv-9bga"},{"vulnerability":"VCID-8mwn-2k1d-rkfz"},{"vulnerability":"VCID-96hb-thus-r3f2"},{"vulnerability":"VCID-cbts-ng32-67e7"},{"vulnerability":"VCID-cq52-ykyq-qug5"},{"vulnerability":"VCID-g5b3-53m2-yug1"},{"vulnerability":"VCID-gg4f-gzty-y7e1"},{"vulnerability":"VCID-pgy6-vbk7-hkg8"},{"vulnerability":"VCID-qh6a-u11q-g3gp"},{"vulnerability":"VCID-s9gb-bjme-gkaf"},{"vulnerability":"VCID-ybfq-unp3-dbav"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@4.6.4-2"},{"url":"http://public2.vulnerablecode.io/api/packages/571451?format=json","purl":"pkg:deb/debian/rsyslog@4.6.4-2%2Bdeb6u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2vuy-ga2a-2ke4"},{"vulnerability":"VCID-4vr2-rn4g-bbep"},{"vulnerability":"VCID-7eg3-vksv-9bga"},{"vulnerability":"VCID-8mwn-2k1d-rkfz"},{"vulnerability":"VCID-96hb-thus-r3f2"},{"vulnerability":"VCID-cbts-ng32-67e7"},{"vulnerability":"VCID-cq52-ykyq-qug5"},{"vulnerability":"VCID-g5b3-53m2-yug1"},{"vulnerability":"VCID-gg4f-gzty-y7e1"},{"vulnerability":"VCID-pgy6-vbk7-hkg8"},{"vulnerability":"VCID-qh6a-u11q-g3gp"},{"vulnerability":"VCID-s9gb-bjme-gkaf"},{"vulnerability":"VCID-ybfq-unp3-dbav"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@4.6.4-2%252Bdeb6u2"},{"url":"http://public2.vulnerablecode.io/api/packages/126731?format=json","purl":"pkg:rpm/redhat/rsyslog@4.6.2-3.el6_1?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4vr2-rn4g-bbep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rsyslog@4.6.2-3.el6_1%3Farch=2"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3200.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3200.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3200","reference_id":"","reference_type":"","scores":[{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98556","published_at":"2026-04-01T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98557","published_at":"2026-04-02T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.9856","published_at":"2026-04-04T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98562","published_at":"2026-04-07T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98565","published_at":"2026-04-08T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98566","published_at":"2026-04-09T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98568","published_at":"2026-04-12T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98569","published_at":"2026-04-13T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98574","published_at":"2026-04-21T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98575","published_at":"2026-04-18T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98577","published_at":"2026-04-24T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98578","published_at":"2026-04-26T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98579","published_at":"2026-04-29T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98584","published_at":"2026-05-11T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98585","published_at":"2026-05-09T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98586","published_at":"2026-05-12T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98588","published_at":"2026-05-14T12:55:00Z"},{"value":"0.6739","scoring_system":"epss","scoring_elements":"0.98589","published_at":"2026-05-15T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3200"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3200","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3200"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644611","reference_id":"644611","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644611"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=727644","reference_id":"727644","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=727644"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1247","reference_id":"RHSA-2011:1247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1247"},{"reference_url":"https://usn.ubuntu.com/1224-1/","reference_id":"USN-1224-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1224-1/"}],"weaknesses":[],"exploits":[{"date_added":null,"description":"This module triggers an off-by-two overflow in the\n        rsyslog daemon. This flaw is unlikely to yield code execution\n        but is effective at shutting down a remote log daemon. This bug\n        was introduced in version 4.6.0 and corrected in 4.6.8/5.8.5.\n        Compiler differences may prevent this bug from causing any\n        noticeable result on many systems (RHEL6 is affected).","required_action":null,"due_date":null,"notes":"Stability:\n  - crash-service-down\nSideEffects: []\nReliability: []\n","known_ransomware_campaign_use":false,"source_date_published":"2011-09-01","exploit_type":null,"platform":"","source_date_updated":null,"data_source":"Metasploit","source_url":"https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/dos/syslog/rsyslog_long_tag.rb"}],"severity_range_score":null,"exploitability":"2.0","weighted_severity":"0.6","risk_score":1.2,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4vr2-rn4g-bbep"}