Photos in Wifi version 1.0.1 suffers from a remote shell upload vulnerability.
4a00b037a1dc3051f06630d1a90f45ed20afc5751a1f8f286020dfd2832f6a2b
Ubuntu Security Notice 2666-1 - A race condition was discovered in the Linux kernel's file_handle size verification. A local user could exploit this flaw to read potentially sensitive memory locations. A underflow error was discovered in the Linux kernel's Ozmo Devices USB over WiFi host controller driver. A remote attacker could exploit this flaw to cause a denial of service (system crash) or potentially execute arbitrary code via a specially crafted packet. Various other issues were also addressed.
47d9b2874b908191ceb7d6cc05e67c129969a7a846612e0abf42f762272cf153
Ubuntu Security Notice 2667-1 - A race condition was discovered in the Linux kernel's file_handle size verification. A local user could exploit this flaw to read potentially sensitive memory locations. A underflow error was discovered in the Linux kernel's Ozmo Devices USB over WiFi host controller driver. A remote attacker could exploit this flaw to cause a denial of service (system crash) or potentially execute arbitrary code via a specially crafted packet. Various other issues were also addressed.
122e7a4e496bfa1708ef0318f8bb997c9f1c401557f2e3bc34b52513381ea323
Ubuntu Security Notice 2664-1 - A race condition was discovered in the Linux kernel's file_handle size verification. A local user could exploit this flaw to read potentially sensitive memory locations. A underflow error was discovered in the Linux kernel's Ozmo Devices USB over WiFi host controller driver. A remote attacker could exploit this flaw to cause a denial of service (system crash) or potentially execute arbitrary code via a specially crafted packet. Various other issues were also addressed.
fa189e6b6391daa79f6ab7ceb545b2f97b172e45e1ec80055aa050d2726b9e27
Ubuntu Security Notice 2665-1 - A race condition was discovered in the Linux kernel's file_handle size verification. A local user could exploit this flaw to read potentially sensitive memory locations. A underflow error was discovered in the Linux kernel's Ozmo Devices USB over WiFi host controller driver. A remote attacker could exploit this flaw to cause a denial of service (system crash) or potentially execute arbitrary code via a specially crafted packet. Various other issues were also addressed.
7fe5d45987e82d6beb0aa597ea875fbc6a50d820627071ddf51320c0b6d6db2e
TimeDoctor autoupdate feature downloads and executes files over plain HTTP and doesn't perform any check with the files. An attacker with MITM capabilities (i.e., when user connects to a public wifi) could override the Timedoctor subdomain and then execute custom binaries on the machine where the application is running.
cf5cbb9e12db32d37835bd9deea463c5dc52c32a82f8ba56eb0159a2d82fdd01
My Wifi Router version 1.0 suffers from a buffer overflow vulnerability.
e82c965f3dcb1eeb55f2121093aeda9d8103007349472a43cb457e3c6d220f49
WiFi HD version 8.1 suffers from denial of service and directory traversal vulnerabilities.
e88ab7c1136a0a93f2e8b89487282d54d89d46e4a835a4a5a458b9c6d034a9cb
Wifi Drive Pro version 1.2 suffers from a local file inclusion vulnerability.
c5cf5d3f463bf90cc37405e42f2ed0f1feba8800be2c7df9bc9363ef6c8a6500
During initial setup, the weather station will submit its complete configuration unencrypted to the manufacturer cloud service. This configuration includes confidential information like the user's Wifi password.
26c45dc9330c4b9106868739be6a04123e25c4881dd15ee9236e856c7b66fbf4
Core Security Technologies Advisory - Some Android devices are affected by a denial of service attack when scanning for WiFi Direct devices. An attacker could send a specially crafted 802.11 Probe Response frame causing the Dalvik subsystem to reboot because of an Unhandle Exception on WiFiMonitor class.
feb52e38d88fae494e9480f07d94fba29e88f585adbd14e6a5b09a5a89af5f6c
WiFi File Browser Pro version 2.0.8 suffers from a code execution vulnerability.
3a17fedccf065dba2df2c8cc06ab986128e6739ee172a59e2c48817e94704d18
Wifiphisher is a security tool that mounts fast automated phishing attacks against WPA networks in order to obtain the secret passphrase. It is a social engineering attack that unlike other methods it does not include any brute forcing. It is an easy way for obtaining WPA credentials.
ec5629cf75d78e38ffa5b6ad34949dab7b4453c9a4a959c8c265a2d3fd64a02d
iWifi for Chat versions 1.1 suffers from a denial of service vulnerability.
3cab99079172c9e06514750282830fd8acfb059162cad3a99c24f705cc4e0a7b
Debian Linux Security Advisory 3052-1 - Jouni Malinen discovered an input sanitization issue in the wpa_cli and hostapd_cli tools included in the wpa package. A remote wifi system within range could provide a crafted string triggering arbitrary code execution running with privileges of the affected wpa_cli or hostapd_cli process.
753b9e912256fa78da742abe670ee67537c6c4abcae01ccf1d07b62619d1837f
The O2 Connection Manager's service suffers from an unquoted search path issue impacting the Import WiFi 'TGCM_ImportWiFiSvc' service for Windows. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. A successful attempt would require the local user to be able to insert their code in the system root path undetected by the OS or other security applications where it could potentially be executed during application startup or reboot. If successful, the local user's code would execute with the elevated privileges of the application.
458cb76ca91d0d44238a91041eb864f394ddc934e2e995011da173b076eb06d6
Apple Security Advisory 2014-09-17-2 - Apple TV 7 is now available and addresses wifi credential interception, information disclosure, code execution, and various other vulnerabilities.
c7b02c75d378a545f8aa6249ce72817c0d53275ba9408b5e1c074ffa5b986f5a
Apple Security Advisory 2014-09-17-1 - iOS 8 is now available and addresses wifi credential interception, identifier disclosure, path traversal, and various other vulnerabilities.
9aea82d38a9a0bbd2a4dc19603d0bb6cbf3c4bc828f5ec2b4416c139ceb66db7
MIUI versions 4.1.17 and 5.30 have a flaw where NFC can be used to enable wifi.
8f0385e79db656d96c679b780cecef8edc53320f2104c9d1fe56d10ff1f6cc51
USB & WiFi Flash Drive version 1.3 suffers from a code execution vulnerability.
5f67a4819878789c4eaf919650741ce0f3db9fe98bf25f5622ecb03ec07b13ab
PhotoSync Wifi and Bluetooth version 1.0 suffers from a local file inclusion vulnerability.
d3483e908f63901493046e31452b90ead46276bba888524dbc8ac0d24edd4ebb
Video WiFi Transfer version 1.01 suffers from a directory traversal vulnerability.
a1e4345f9f57c640e427b649d6399872f828be3569ea63b0191fe4f95f544b4c
Photo WiFi Transfer version 1.01 suffers from a directory traversal vulnerability.
1aa823b490ae3034f340604d446c57cda18cd37a0e00d5b90ff571baddb13c0f
WiFi HD version 7.3.0 suffers from local file inclusion, directory traversal, command injection, and cross site request forgery vulnerabilities.
385a35c17ef6e5d6fe31cad54fc9c513afe14f1ef33ed25c6b35b80ff42a5f85
NG WifiTransfer Pro version 1.1 suffers from a local file inclusion vulnerability.
582cb0caa7b800b3eec240541ede7b6b7c23ca1a5e21863808c02a9b6214e277
Depot WiFi version 1.0.0 for iOS suffers from code execution and local file inclusion vulnerabilities.
239876a4258fa1ffcf2718fcb13020b5cd7008ce28f17eef80d30d9eaea994bd