Permissions, Privileges, and Access Controls in hostapd
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2012-2389 |
| CWE-ID | CWE-264 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
hostapd Server applications / Remote access servers, VPN |
| Vendor | Jouni Malinen |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU43967
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2012-2389
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.
hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials.
MitigationInstall update from vendor's website.
Vulnerable software versionshostapd: 0.7.3
External linkshttp://lists.fedoraproject.org/pipermail/package-announce/2012-June/081983.html
http://www.mandriva.com/security/advisories?name=MDVSA-2012:168
http://www.openwall.com/lists/oss-security/2012/05/23/13
http://www.openwall.com/lists/oss-security/2012/05/23/3
http://www.openwall.com/lists/oss-security/2012/05/23/5
http://bugzilla.novell.com/show_bug.cgi?id=740964
http://bugzilla.redhat.com/show_bug.cgi?id=824660
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
