RSS   Podatności dla 'Connman'   RSS

2013-01-01
 
CVE-2012-6459

CWE-200
 

 
ConnMan 1.3 on Tizen continues to list the bluetooth service after offline mode has been enabled, which might allow remote attackers to obtain sensitive information via Bluetooth packets.

 
2012-05-18
 
CVE-2012-2322

CWE-189
 

 
Integer overflow in the dhcpv6_get_option function in gdhcp/client.c in ConnMan before 0.85 allows remote attackers to cause a denial of service (infinite loop and crash) via an invalid length value in a DHCP packet.

 
 
CVE-2012-2321

CWE-20
 

 
The loopback plug-in in ConnMan before 0.85 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) host name or (2) domain name in a DHCP reply.

 
 
CVE-2012-2320

CWE-264
 

 
ConnMan before 0.85 does not ensure that netlink messages originate from the kernel, which allows remote attackers to bypass intended access restrictions and cause a denial of service via a crafted netlink message.

 


Copyright 2024, cxsecurity.com

 

Back to Top