9 matches found
Design/Logic Flaw
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Remote, Unauthenticated Denial of Service in the RIM Radio Interface Module process running on the WiNG Access Point via crafted packets...
Hardcoded credentials
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is an Smintencrypt Hardcoded AES Key that can be used for packet decryption obtaining cleartext credentials by an attacker who has access to a wired port...
Command injection
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Hidden Root Shell by entering the administrator password in conjunction with the 'service start-shell' CLI command...
CVE-2018-5794
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is No Authentication for the AeroScout Service via a crafted UDP packet...
Design/Logic Flaw
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Remote, Unauthenticated Heap Overflow in the HSD Process over the MINT Media Independent Tunnel Protocol on the WiNG Access Point via crafted packets...
CVE-2018-5796
An elevation of privileges vulnerability in Extreme Networks ExtremeWireless WiNG (5.x) before 5.8.6.9 and 5.9.x before 5.9.1.3 allows an attacker to obtain a hidden root shell by entering the administrator password in conjunction with the 'service start-shell' CLI command. Affected product: Extr...
CVE-2018-5793
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Remote, Unauthenticated Heap Overflow in the HSD Process over the MINT Media Independent Tunnel Protocol on the WiNG Access Point via crafted packets...
Extreme Networks ExtremeWireless WiNG Heap Overflow Vulnerability
Extreme Networks ExtremeWireless WiNG is a wireless access solution from Extreme Networks, Inc.The WiNG Access Point AP is one of the... A heap overflow vulnerability exists in the MINT Media Independent Tunnel Protocol for WiNG APs in Extreme Networks ExtremeWireless WiNG version 5.x prior to...
Extreme Networks ExtremeWireless WiNG Heap Overflow Vulnerability (CNVD-2018-03321)
Extreme Networks ExtremeWireless WiNG is a wireless access solution from Extreme Networks, Inc.The WiNG Access Point AP is one of the... A heap overflow vulnerability exists in the MINT Media Independent Tunnel Protocol for WiNG APs in Extreme Networks ExtremeWireless WiNG version 5.x prior to...