PT-2007-4178 · Hostap · Wpa Supplicant
Published
2007-07-27
·
Updated
2011-03-08
·
CVE-2007-2874
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
wpa supplicant versions prior to 0.6.5-3.fc7
Description
A buffer overflow issue exists in the wpa printf function within the debugging code of wpa supplicant. This allows user-assisted remote attackers to execute arbitrary code via malformed frames on a WPA2 network.
Recommendations
For versions prior to 0.6.5-3.fc7, update to version 0.6.5-3.fc7 or later to resolve the issue. As a temporary workaround, consider disabling the debugging code in wpa supplicant to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Wpa Supplicant