Stack-based buffer overflow in the SET_WPS_IE IOCTL implementation in wlan_hdd_hostapd.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges via a crafted application that uses a long WPS IE element.
CPE | Name | Operator | Version |
---|---|---|---|
linux_kernel | ge | 4.0.0 | |
linux_kernel | le | 4.20.15 | |
linux_kernel | ge | 3.0.0 | |
linux_kernel | le | 3.19.8 |