Vulnerability Description
A vulnerability classified as problematic has been found in rofl0r MacGeiger. Affected is the function dump_wlan_at of the file macgeiger.c of the component ESSID Handler. The manipulation leads to injection. Access to the local network is required for this attack to succeed. The complexity of an attack is rather high. The exploitability is told to be difficult. The name of the patch is 57f1dd50a4821b8c8e676e8020006ae4bfd3c9cb. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217188.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Macgeiger Project | Macgeiger | < 2017-12-02 |
Related Weaknesses (CWE)
References
- https://github.com/rofl0r/MacGeiger/commit/57f1dd50a4821b8c8e676e8020006ae4bfd3cPatchThird Party Advisory
- https://vuldb.com/?ctiid.217188Third Party Advisory
- https://vuldb.com/?id.217188Permissions RequiredThird Party Advisory
- https://github.com/rofl0r/MacGeiger/commit/57f1dd50a4821b8c8e676e8020006ae4bfd3cPatchThird Party Advisory
- https://vuldb.com/?ctiid.217188Third Party Advisory
- https://vuldb.com/?id.217188Permissions RequiredThird Party Advisory
FAQ
What is CVE-2017-20161?
CVE-2017-20161 is a vulnerability with a CVSS score of 4.6 (MEDIUM). A vulnerability classified as problematic has been found in rofl0r MacGeiger. Affected is the function dump_wlan_at of the file macgeiger.c of the component ESSID Handler. The manipulation leads to in...
How severe is CVE-2017-20161?
CVE-2017-20161 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-20161?
Check the references section above for vendor advisories and patch information. Affected products include: Macgeiger Project Macgeiger.