17 matches found
EUVD-2008-5796
Malware in sbrugna...
SUSE: Security Advisory (SUSE-SU-2016:2305-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : wpa_supplicant (openSUSE-2016-1104)
This update for wpasupplicant fixes the following issues : - CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding. bnc930077 - CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing. bnc930078 - CVE-2015-4143: EAP-pwd missing payload length validation...
SUSE SLED12 / SLES12 Security Update : wpa_supplicant (SUSE-SU-2016:2305-1)
This update for wpasupplicant fixes the following issues : - CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding. bnc930077 - CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing. bnc930078 - CVE-2015-4143: EAP-pwd missing payload length validation...
Debian Security Advisory DSA 3397-1 (wpa - security update)
Several vulnerabilities have been discovered in wpasupplicant and hostapd. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-4141 Kostya Kortchinsky of the Google Security Team discovered a vulnerability in the WPS UPnP function with HTTP chunked transfe...
CVE-2015-8041
Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpasupplicant before 2.5 allow remote attackers to cause a denial of service process crash or infinite loop via a large payload length field value in an 1 WPS or 2 P2P NFC NDEF record, which triggers an out-of-bounds...
Integer overflow
Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpasupplicant before 2.5 allow remote attackers to cause a denial of service process crash or infinite loop via a large payload length field value in an 1 WPS or 2 P2P NFC NDEF record, which triggers an out-of-bounds...
CVE-2015-8041
Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpasupplicant before 2.5 allow remote attackers to cause a denial of service process crash or infinite loop via a large payload length field value in an 1 WPS or 2 P2P NFC NDEF record, which triggers an out-of-bounds...
CVE-2015-8041
Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpasupplicant before 2.5 allow remote attackers to cause a denial of service process crash or infinite loop via a large payload length field value in an 1 WPS or 2 P2P NFC NDEF record, which triggers an out-of-bounds...
CVE-2015-8041
CVE-2015-8041 affects hostapd and wpa_supplicant (pre-2.5) with multiple integer overflows in the NDEF record parser. An attacker can trigger a denial of service via a large WPS or P2P NFC NDEF payload length, causing an out-of-bounds read. The connected openSUSE/SUSE advisories reference this CV...
CVE-2015-8041
Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpasupplicant before 2.5 allow remote attackers to cause a denial of service process crash or infinite loop via a large payload length field value in an 1 WPS or 2 P2P NFC NDEF record, which triggers an out-of-bounds...
Fedora 21 : hostapd-2.4-3.fc21 (2015-11441)
apply fix for NDEF record payload length checking Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
wpa_supplicant -- WPS_NFC option payload length validation vulnerability
Jouni Malinen reports: Incomplete WPS and P2P NFC NDEF record payload length validation. 2015-5...
Nokia 6212 classic URI spoofing and DoS advisory (original date: Dec. 2008)
Vulnerability Report --- BEGIN ADVISORY --- Manufacturer: Nokia www.nokia.com Device: Nokia 6212 Classic Firmware: V 05.16, 29-09-08, RM-396 Device Type: mobile phone OS: Nokia Series40 Subsystem: Near Field Communication ----------------------------- Executive Summary: URL Spoofing when displayi...
CVE-2008-5826
The Nokia 6131 Near Field Communication NFC phone with 05.12 firmware allows remote attackers to cause a denial of service device crash via 1 a large value in the payload length field in an NDEF record, or a certain length for a 2 tel: or 3 sms: NDEF URI...
Design/Logic Flaw
The Nokia 6131 Near Field Communication NFC phone with 05.12 firmware allows remote attackers to cause a denial of service device crash via 1 a large value in the payload length field in an NDEF record, or a certain length for a 2 tel: or 3 sms: NDEF URI...
CVE-2008-5826
The Nokia 6131 Near Field Communication NFC phone with 05.12 firmware allows remote attackers to cause a denial of service device crash via 1 a large value in the payload length field in an NDEF record, or a certain length for a 2 tel: or 3 sms: NDEF URI...