Описание
Buffer overflow in iwconfig, when installed setuid, allows local users to execute arbitrary code via a long OUT environment variable.
Ссылки
- ExploitMailing ListThird Party Advisory
- ExploitMailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:wireless_tools_project:wireless_tools:19:*:*:*:*:*:*:*
cpe:2.3:a:wireless_tools_project:wireless_tools:20:*:*:*:*:*:*:*
cpe:2.3:a:wireless_tools_project:wireless_tools:21:*:*:*:*:*:*:*
cpe:2.3:a:wireless_tools_project:wireless_tools:22:*:*:*:*:*:*:*
cpe:2.3:a:wireless_tools_project:wireless_tools:23:*:*:*:*:*:*:*
cpe:2.3:a:wireless_tools_project:wireless_tools:24:*:*:*:*:*:*:*
cpe:2.3:a:wireless_tools_project:wireless_tools:25:*:*:*:*:*:*:*
cpe:2.3:a:wireless_tools_project:wireless_tools:26:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00091
Низкий
7.2 High
CVSS2
Дефекты
CWE-120
Связанные уязвимости
debian
больше 21 года назад
Buffer overflow in iwconfig, when installed setuid, allows local users ...
github
больше 3 лет назад
Buffer overflow in iwconfig, when installed setuid, allows local users to execute arbitrary code via a long OUT environment variable.
EPSS
Процентиль: 27%
0.00091
Низкий
7.2 High
CVSS2
Дефекты
CWE-120