13 matches found
Linux Distros Unpatched Vulnerability : CVE-2006-7246
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used. CVE-2006-7246 Note that Nessus relies on the presence...
SUSE: Security Advisory (SUSE-SU-2012:0283-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2012:0260-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2006-7246
CVE-2006-7246 affects NetworkManager 0.9.x, where the code path used for 802.11X authentication does not pin a certificate’s subject to the ESSID. The root cause is a failure to bind the server certificate to the specific wireless network, potentially allowing credential exposure or man-in-the-mi...
Fedora 24 : NetworkManager-fortisslvpn-1.2.0-0.4.beta3.fc24 / etc (2016-cd218eef79)
Update to NetworkManager 1.2-beta3. Upstream release announcement: https://mail.gnome.org/archives/networkmanager-list/2016-March/msg0016 4.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
openSUSE Security Update : NetworkManager (openSUSE-SU-2011:1273-1)
NetworkManager did not pin a certificate's subject to an ESSID. A rogue access point could therefore be used to conduct MITM attacks by using any other valid certificate issued by same CA as used in the original network CVE-2006-7246. Please note that existing WPA2 Enterprise connections need to ...
openSUSE Security Update : NetworkManager (openSUSE-SU-2011:1273-1)
NetworkManager did not pin a certificate's subject to an ESSID. A rogue access point could therefore be used to conduct MITM attacks by using any other valid certificate issued by same CA as used in the original network CVE-2006-7246. Please note that existing WPA2 Enterprise connections need to ...
openSUSE Security Update : NetworkManager-gnome (openSUSE-SU-2012:0101-1)
NetworkManager did not pin a certificate's subject to an ESSID. A rogue access point could therefore be used to conduct MITM attacks by using any other valid certificate issued by same CA as used in the original network CVE-2006-7246. Please note that existing WPA2 Enterprise connections need to ...
SuSE 10 Security Update : NetworkManager (ZYPP Patch Number 7957)
NetworkManager did not pin a certificate's subject to an ESSID. A rogue access point could therefore be used to conduct MITM attacks by using any other valid certificate issued by same CA as used in the original network. CVE-2006-7246 Please note that existing WPA2 Enterprise connections need to ...
SuSE 11.1 Security Update : NetworkManager-gnome (SAT Patch Number 5621)
NetworkManager did not pin a certificate's subject to an ESSID. A rogue access point could therefore be used to conduct MITM attacks by using any other valid certificate issued by same CA as used in the original network. CVE-2006-7246 Please note that existing WPA2 Enterprise connections need to ...
SuSE 11.1 Security Update : NetworkManager (SAT Patch Number 5381)
NetworkManager did not pin a certificate's subject to an ESSID. A rogue access point could therefore be used to conduct MITM attacks by using any other valid certificate issued by same CA as used in the original network CVE-2006-7246. This has been fixed. Please note that existing WPA2 Enterprise...
SuSE Update for NetworkManager, wpa_supplicant, NetworkManager-gnome SUSE-SA:2011:045
Check for the Version of NetworkManager, wpasupplicant, NetworkManager-gnome OpenVAS Vulnerability Test SuSE Update for NetworkManager, wpasupplicant, NetworkManager-gnome SUSE-SA:2011:045 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.ne...
SUSE: Security Advisory for NetworkManager, wpa_supplicant, NetworkManager-gnome (SUSE-SA:2011:045)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...