Back to search
CVE-2012-4445
Published: Oct 10, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Heap-based buffer overflow in the eap_server_tls_process_fragment function in eap_server_tls_common.c in the EAP authentication server in hostapd 0.6 through 1.0 allows remote attackers to cause a denial of service (crash or abort) via a small "TLS Message Length" value in an EAP-TLS message with the "More Fragments" flag set.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.pre-cert.de/advisories/PRE-SA-2012-07.txt
x_refsource_MISC
[oss-security] 20121008 [PRE-SA-2012-07] hostapd: Missing EAP-TLS message length validation
mailing-list
x_refsource_MLIST
50805
third-party-advisory
x_refsource_SECUNIA
DSA-2557
vendor-advisory
x_refsource_DEBIAN
1027808
vdb-entry
x_refsource_SECTRACK
MDVSA-2012:168
vendor-advisory
x_refsource_MANDRIVA
86051
vdb-entry
x_refsource_OSVDB
55826
vdb-entry
x_refsource_BID
FreeBSD-SA-12:07
vendor-advisory
x_refsource_FREEBSD
hostapd-eaptls-dos(79104)
vdb-entry
x_refsource_XF
50888
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now