Buffer overflow in iwconfig, when installed setuid, allows local users to execute arbitrary code via a long OUT environment variable.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-120,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| wireless_tools_project | wireless_tools | 25 |
| wireless_tools_project | wireless_tools | 22 |
| wireless_tools_project | wireless_tools | 20 |
| wireless_tools_project | wireless_tools | 24 |
| wireless_tools_project | wireless_tools | 21 |
| wireless_tools_project | wireless_tools | 23 |
| wireless_tools_project | wireless_tools | 19 |
| wireless_tools_project | wireless_tools | 26 |