Heap-based Buffer Overflow Vulnerability in Hostapd Authentication Server
CVE-2012-4445

Currently unrated

Key Information:

Vendor: W1.fi
Status: Hostapd
Vendor: CVE Published:; 10 October 2012

What is CVE-2012-4445?

The authentication server in Hostapd versions 0.6 through 1.0 contains a heap-based buffer overflow vulnerability within the eap_server_tls_process_fragment function. This weakness permits remote attackers to exploit a small 'TLS Message Length' value in an EAP-TLS message marked with the 'More Fragments' flag, potentially leading to a denial of service through a crash or abrupt termination of the service. Addressing this vulnerability is critical for maintaining the integrity and availability of network services utilizing Hostapd.

References

http://w1.fi/gitweb/gitweb.cgi?p=hostap.git%3Ba=commitdif...

x_refsource_CONFIRM

http://www.pre-cert.de/advisories/PRE-SA-2012-07.txt

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2012/10/08/3

mailing-listx_refsource_MLIST

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 10, 2012
Vulnerability Reserved
Aug 21, 2012

CVE-2012-4445 Data

JSON

W1.fi

What is CVE-2012-4445?

References

Timeline