8 matches found
SLES9: Security update for xsupplicant
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: xsupplicant For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5018467 within the...
SLES9: Security update for xsupplicant
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: xsupplicant For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5018467 within the...
SuSE9 Security Update : xsupplicant (YOU Patch Number 11386)
xsupplicant has been upgraded to version 1.2.8, which includes bugfixes and one security fix : - A post-authentication stack overflow in the EAP handling could be used by already authenticated attacker to overflow a stack buffer and so potentially execute code. CVE-2006-5601 %NASLMINLEVEL 70300 C...
SuSE 10 Security Update : xsupplicant (ZYPP Patch Number 2455)
xsupplicant has been upgraded to version 1.2.8, which includes bugfixes and one security fix : - A post-authentication stack overflow in the EAP handling could be used by already authenticated attacker to overflow a stackbuffer and so potentially execute code. CVE-2006-5601 %NASLMINLEVEL 70300 C...
openSUSE 10 Security Update : xsupplicant (xsupplicant-2459)
xsupplicant has been upgraded to version 1.2.8, which includes bugfixes and one security fix : CVE-2006-5601: A post-authentication stack overflow in the EAP handling could be used by already authenticated attacker to overflow a stackbuffer and so potentially execute code. %NASLMINLEVEL 70300 C...
Mandrake Linux Security Advisory : xsupplicant (MDKSA-2006:189)
Yannick Van Osselaer discovered a stack overflow in Xsupplicant, which could potentially be exploited by a remote, authenticated user to gain root priviledges. Additional code cleanups to fix potential memory leaks are also included. Updated packages have been patched to correct this issue...
CVE-2006-5601
Stack-based buffer overflow in the eapdonotify function in eap.c in xsupplicant before 1.2.6, and possibly other versions, allows remote authenticated users to execute arbitrary code via unspecified vectors...
CVE-2006-5601
CVE-2006-5601 describes a stack-based buffer overflow in the eap_do_notify function of xsupplicant’s eap.c, affecting xsupplicant before 1.2.6. The overflow could allow remote authenticated users to execute arbitrary code via unspecified vectors. The OpenVAS/Nessus entries indicate remediation th...