• Tenable
  • CVEs
  • Settings
    Links
    Tenable.io Tenable Community & Support Tenable University
    Severity
    Theme
  • Tenable
  • Links
  • Tenable.io
  • Tenable Community & Support
  • Tenable University
  • Settings
  • Severity
  • Theme
  • Newest
  • Updated
  • Search
  • Newest
  • Updated
  • Search
  1. CVEs
  2. CVE-2015-4142
  1. CVEs

CVE-2015-4142

medium
  • Information
  • CPEs
  • Plugins

Description

Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpa_supplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service (crash) via a crafted frame, which triggers an out-of-bounds read.

References

http://lists.opensuse.org/opensuse-updates/2015-06/msg00019.html

http://w1.fi/security/2015-3/integer-underflow-in-ap-mode-wmm-action-frame.txt

http://rhn.redhat.com/errata/RHSA-2015-1090.html

http://www.openwall.com/lists/oss-security/2015/05/09/5

http://www.openwall.com/lists/oss-security/2015/05/31/6

http://rhn.redhat.com/errata/RHSA-2015-1439.html

https://security.gentoo.org/glsa/201606-17

http://www.securitytracker.com/id/1032625

http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172608.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172655.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171401.html

http://www.debian.org/security/2015/dsa-3397

http://www.ubuntu.com/usn/USN-2650-1

https://support.apple.com/kb/HT213258

http://seclists.org/fulldisclosure/2022/May/34

Details

Source: MITRE

Published: 2015-06-15

Updated: 2022-05-17

Type: CWE-119

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

  • Tenable.com
  • Community & Support
  • Documentation
  • Education
  • © 2023 Tenable®, Inc. All Rights Reserved
  • Privacy Policy
  • Legal
  • 508 Compliance