Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2016-4477

Published: 09/05/2016 Updated: 23/10/2017
CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 392
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Google

Vulnerability Summary

wpa_supplicant 0.4.0 up to and including 2.5 does not reject \n and \r characters in passphrase parameters, which allows local users to trigger arbitrary library loading and consequently gain privileges, or cause a denial of service (daemon outage), via a crafted (1) SET, (2) SET_CRED, or (3) SET_NETWORK command.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

google android 5.1.1

google android 5.0.2

google android 6.0.1

google android 6.0

google android 4.4.4

Vendor Advisories

Debian CVElist Bug Report Logs: wpa: CVE-2016-4476 CVE-2016-4477 / 2016-1 advisory
Debian Bug report logs - #823411 wpa: CVE-2016-4476 CVE-2016-4477 / 2016-1 advisory Package: src:wpa; Maintainer for src:wpa is Debian wpasupplicant Maintainers <wpa@packagesdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 4 May 2016 12:51:01 UTC Severity: important Tags: patch, securit ...
Ubuntu Security Notice: wpa vulnerabilities
Several security issues were fixed in wpa_supplicant ...
Red Hat: CVE-2016-4477
wpa_supplicant 040 through 25 does not reject \n and \r characters in passphrase parameters, which allows local users to trigger arbitrary library loading and consequently gain privileges, or cause a denial of service (daemon outage), via a crafted (1) SET, (2) SET_CRED, or (3) SET_NETWORK command ...
Arch Linux Issues:
The local configuration update through the control interface SET_NETWORK command could allow privilege escalation for the local user to run code from a locally stored library file under the same privileges as the wpa_supplicant process has The assumption here is that a not fully trusted user/application might have access through a connection manag ...

References

CWE-19http://source.android.com/security/bulletin/2016-05-01.htmlhttp://www.openwall.com/lists/oss-security/2016/05/03/12http://www.ubuntu.com/usn/USN-3455-1https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823411https://nvd.nist.govhttps://usn.ubuntu.com/3455-1/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook