Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a (1) large length value in an EAPOL packet or (2) long EAPOL packet.
CPE | Name | Operator | Version |
---|---|---|---|
aircrack-ng | eq | 1.0 rc4 | |
aircrack-ng | eq | 0.9.2 | |
aircrack-ng | le | 1.0 | |
aircrack-ng | eq | 0.4.1 | |
aircrack-ng | eq | 0.5 | |
aircrack-ng | eq | 0.9.1 | |
aircrack-ng | eq | 1.0 beta2 | |
aircrack-ng | eq | 0.2 | |
aircrack-ng | eq | 0.4 | |
aircrack-ng | eq | 0.1 |