761 matches found
Debian: Security Advisory (DSA-2557-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2012-4445
Heap-based buffer overflow in the eapservertlsprocessfragment function in eapservertlscommon.c in the EAP authentication server in hostapd 0.6 through 1.0 allows remote attackers to cause a denial of service crash or abort via a small "TLS Message Length" value in an EAP-TLS message with the "Mor...
CVE-2012-4445
Heap-based buffer overflow in the eapservertlsprocessfragment function in eapservertlscommon.c in the EAP authentication server in hostapd 0.6 through 1.0 allows remote attackers to cause a denial of service crash or abort via a small "TLS Message Length" value in an EAP-TLS message with the "Mor...
PT-2012-1046 · Debian · Hostapd
Name of the Vulnerable Software and Affected Versions: hostapd versions 0.6 through 1.0 Description: The issue concerns multiple vulnerabilities in the hostapd package of the Debian GNU/Linux operating system, which can be exploited remotely to disrupt the availability of protected information...
[SECURITY] [DSA 2557-1] hostapd security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2557-1 [email protected] http://www.debian.org/security/ Nico Golde October 08, 2012 http://www.debian.org/security/faq -...
[PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation
PRE-CERT Security Advisory ========================== Advisory: PRE-SA-2012-07 Released on: 8 October 2012 Affected product: Hostapd 0.6 - 1.0 Impact: denial of service Origin: specially crafted EAP-TLS messages CVSS Base Score: 7.8 Impact Subscore: 6.9 Exploitability Subscore: 10 CVSS Vector:...
hostapd buffer overflow
Buffer overflow during EAP authentication...
Debian DSA-2557-1 : hostapd - buffer overflow
Timo Warns discovered that the internal authentication server of hostapd, a user space IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator, is vulnerable to a buffer overflow when processing fragmented EAP-TLS messages. As a result, an internal overflow checking routine terminates the...
[SECURITY] [DSA 2557-1] hostapd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2557-1 [email protected] http://www.debian.org/security/ Nico Golde October 08, 2012 http://www.debian.org/security/faq -...
DSA-2557-1 hostapd - denial of service
Bulletin has no description...
Fedora Update for hostapd FEDORA-2012-9137
Check for the Version of hostapd OpenVAS Vulnerability Test Fedora Update for hostapd FEDORA-2012-9137 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for hostapd FEDORA-2012-9137
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for hostapd FEDORA-2012-9206
Check for the Version of hostapd OpenVAS Vulnerability Test Fedora Update for hostapd FEDORA-2012-9206 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for hostapd FEDORA-2012-9206
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2012-2389
hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials...
CVE-2012-2389
hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials...
Design/Logic Flaw
hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials...
CVE-2012-2389
Summary: CVE-2012-2389 affects hostapd 0.7.3 and possibly earlier versions up to 1.0, where the configuration file /etc/hostapd/hostapd.conf is created with 0644 permissions, allowing local users to read credentials. Impact (as stated): Local access could disclose sensitive information such as cr...
CVE-2012-2389
hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials...
CVE-2012-2389
hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials...