CVE-2012-4445

Heap-based buffer overflow in the eap_server_tls_process_fragment function in eap_server_tls_common.c in the EAP authentication server in hostapd 0.6 through 1.0 allows remote attackers to cause a denial of service (crash or abort) via a small "TLS Message Length" value in an EAP-TLS message with the "More Fragments" flag set.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:w1.fi:hostapd:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.7.3:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:1.0:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.6.6:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.6.7:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.6.4:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:w1.fi:hostapd:0.6.5:*:*:*:*:*:*:*

Information

Published : 2012-10-10 11:55

Updated : 2023-02-12 20:34


NVD link : CVE-2012-4445

Mitre link : CVE-2012-4445


JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa

Products Affected

w1.fi

  • hostapd