SUSE: Security Advisory (SUSE-SU-2012:0231-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-4182

Missing escaping of ESSID values in sysconfig of SUSE Linux Enterprise allows attackers controlling an access point to cause execute arbitrary code. Affected releases are sysconfig prior to 0.83.7-2.1...

CVE-2011-4182 shell code injection via ESSID because of missing escaping of a variable

Missing escaping of ESSID values in sysconfig of SUSE Linux Enterprise allows attackers controlling an access point to cause execute arbitrary code. Affected releases are sysconfig prior to 0.83.7-2.1...

CVE-2011-4182

CVE-2011-4182 describes a code execution vulnerability in SUSE Linux Enterprise sysconfig caused by missing escaping of ESSID values. The issue allows an attacker who controls an access point to execute arbitrary code on the affected system. Affected releases are sysconfig prior to 0.83.7-2.1. Th...

openSUSE Security Update : sysconfig (openSUSE-2012-74)

Fixed to quote config / interface variables in ifservices script and cleaned up content of the ESSID which gets appended to them by NetworkManager dispatcher hook bnc735394, CVE-2011-4182. Fixed also to return proper exit code 0 in NM dispatcher hooks. - Changed to call ip addr flush in ifdown,...

openSUSE Security Update : sysconfig (openSUSE-SU-2012:0242-1)

This update for sysconfig contains the following fixes : - sysconfig hook script for NetworkManager did not properly quote shell meta characters when processing ESSIDs. Specially crafted network names could therefore lead to execution of shell code CVE-2011-4182. - Explicitly disabled posix mode ...

SuSE 10 Security Update : sysconfig (ZYPP Patch Number 7892)

The following bug has been fixed : - sysconfig hook script for NetworkManager did not properly quote shell meta characters when processing ESSIDs. Specially crafted network names could have therefore lead to execution of shell code. CVE-2011-4182 %NASLMINLEVEL 70300 C Tenable Network Security, In...

SuSE 11.1 Security Update : sysconfig (SAT Patch Number 5618)

sysconfig hook script for NetworkManager did not properly quote shell meta characters when processing ESSIDs. Specially crafted network names could have therefore lead to execution of shell code. CVE-2011-4182 In addition, the following non-security bugs were fixed : - 580018: ip addr flush $ifna...