Lucene search
GoogleOSV:CVE-2016-4477HistoryMay 09, 2016 - 10:59 a.m.
CVE-2016-4477
2016-05-0910:59:00
Google
osv.dev
4
0.001 Low
EPSS
Percentile
28.1%
wpa_supplicant 0.4.0 through 2.5 does not reject \n and \r characters in passphrase parameters, which allows local users to trigger arbitrary library loading and consequently gain privileges, or cause a denial of service (daemon outage), via a crafted (1) SET, (2) SET_CRED, or (3) SET_NETWORK command.
Related
ubuntucve
ubuntucve
CVE-2016-4477
2016-05-09 00:00:00
cve
cve
CVE-2016-4477
2016-05-09 10:59:42
CVE-2016-2447
2016-05-09 10:59:25
nvd
nvd
CVE-2016-4477
2016-05-09 10:59:42
CVE-2016-2447
2016-05-09 10:59:25
prion
prion
Command injection
2016-05-09 10:59:00
Design/Logic Flaw
2016-05-09 10:59:00
alpinelinux
alpinelinux
CVE-2016-4477
2016-05-09 10:59:42
debiancve
debiancve
CVE-2016-4477
2016-05-09 10:59:42
cvelist
cvelist
CVE-2016-4477
2016-05-09 10:00:00
archlinux
archlinux
[ASA-201610-7] wpa_supplicant: multiple issues
2016-10-08 00:00:00
[ASA-201610-3] hostapd: multiple issues
2016-10-04 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-473-1)
2023-03-08 00:00:00
Mageia: Security Advisory (MGASA-2016-0199)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-3455-1)
2017-10-18 00:00:00
nessus
nessus
freebsd
freebsd
osv
osv
wpa - security update
2016-05-14 00:00:00
mageia
mageia
Updated wpa_supplicant packages fix security vulnerabilities
2016-05-22 01:11:24
debian
debian
[SECURITY] [DLA 473-1] wpa security update
2016-05-14 21:19:38
ubuntu
ubuntu
wpa_supplicant and hostapd vulnerabilities
2017-10-16 00:00:00
androidsecurity
androidsecurity
Android Security BulletinโMay 2016
2016-05-02 00:00:00
kitploit
kitploit
arch-audit - An utility like pkg-audit for Arch Linux
2016-10-15 14:30:00