Aircrack-Ng: >> Aircrack-Ng >> 0.4 Security Vulnerabilities
Stack-based buffer overflow in the tcp_test function in aireplay-ng.c in Aircrack-ng before 1.2 RC 1 allows remote attackers to execute arbitrary code via a crafted length parameter value.
CVSS Score
9.8
EPSS Score
0.322
Published
2020-01-31
Stack-based buffer overflow in the gps_tracker function in airodump-ng.c in Aircrack-ng before 1.2 RC 1 allows local users to execute arbitrary code or gain privileges via unspecified vectors.
CVSS Score
7.8
EPSS Score
0.002
Published
2020-01-31
Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a (1) large length value in an EAPOL packet or (2) long EAPOL packet.
CVSS Score
6.8
EPSS Score
0.264
Published
2013-10-28