Improper input validation in W1.fi Hostapd
CVE-2014-3686
wpa_supplicant and hostapd 0.7.2 through 2.2, when running with certain configurations and using wpa_cli or hostapd_cli with action scripts, allows remote attackers to execute arbitrary commands via a crafted frame.
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.045 (89.3th percentile) — read the EPSS interpretation.
Affected products
- W1.fi Hostapd — versions 0.7.2, 1.0, 1.1
- W1.fi Wpa_supplicant — versions 0.72, 1.0, 1.1
- Canonical Ubuntu_linux — versions 10.04, 12.04, 14.04
- Debian Debian_linux — versions 6.0
- N/a — versions n/a
Weakness classification (CWE)
References
- 60366 (x_refsource_SECUNIA, third-party-advisory)
- DSA-3052 (vendor-advisory, x_refsource_DEBIAN)
- openSUSE-SU-2014:1314 (vendor-advisory, x_refsource_SUSE)
- 60428 (x_refsource_SECUNIA, third-party-advisory)
- secalert@redhat.com (x_refsource_CONFIRM)
- secalert@redhat.com (x_refsource_CONFIRM)
- MDVSA-2015:120 (vendor-advisory, x_refsource_MANDRIVA)
- [oss-security] 20141009 wpa_cli and hostapd_cli action script execution vulnerability (mailing-list, x_refsource_MLIST)
- RHSA-2014:1956 (x_refsource_REDHAT, vendor-advisory)
- 61271 (x_refsource_SECUNIA, third-party-advisory)