CVE-2009-4144

NetworkManager (NM) 0.7.2 does not ensure that the configured Certification Authority (CA) certificate file for a (1) WPA Enterprise or (2) 802.1x network remains present upon a connection attempt, which might allow remote attackers to obtain sensitive information or cause a denial of service (connectivity disruption) by spoofing the identity of a wireless network.

Date published : 2009-12-23

http://www.securityfocus.com/bid/37580

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560067