CVE-2007-2874

4 documents4 sources

Severity

5.8MEDIUM

EPSS

2.9%

top 13.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Fedora Core

Timeline

PublishedJul 27

Latest updateMay 1

Description

Buffer overflow in the wpa_printf function in the debugging code in wpa_supplicant in the Fedora NetworkManager package before 0.6.5-3.fc7 allows user-assisted remote attackers to execute arbitrary code via malformed frames on a WPA2 network. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages1 packages

▶NVDredhat/fedora_core0.6.5-3.fc7

Patches

Patch: fedoraproject.org ↗Patch: www.redhat.com ↗Patch: fedoraproject.org ↗

🔴Vulnerability Details

GHSA

GHSA-xjfh-8597-7v3j: Buffer overflow in the wpa_printf function in the debugging code in wpa_supplicant in the Fedora NetworkManager package before 0↗2022-05-01

▶

CVEList

CVE-2007-2874: Buffer overflow in the wpa_printf function in the debugging code in wpa_supplicant in the Fedora NetworkManager package before 0↗2007-07-27

▶

💬Community

Bugzilla

CVE-2007-2874 wpa_supplicant segfault during WPA2 association↗2007-06-04

▶