Xsupplicant Stack Buffer Overflow Vulnerability

Xsupplicant Stack Buffer Overflow Vulnerability

Xsupplicant is prone to a stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer.

Exploiting this issue allows attackers to execute arbitrary machine code in the context of users running the affected application. Failed attempts will likely crash the application, resulting in denial-of-service conditions.

Xsupplicant versions prior to 1.2.8 are reported vulnerable.