[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2007-2831

Date: (C)2007-05-23   (M)2017-08-01
 
CVSS Score: 10.0Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











Array index error in the (1) ieee80211_ioctl_getwmmparams and (2) ieee80211_ioctl_setwmmparams functions in net80211/ieee80211_wireless.c in MadWifi before 0.9.3.1 allows local users to cause a denial of service (system crash), possibly obtain kernel memory contents, and possibly execute arbitrary code via a large negative array index value.

Reference:
http://www.securityfocus.com/archive/1/archive/1/470674/100/100/threaded
BID-24114
SECUNIA-25339
SECUNIA-25622
SECUNIA-25763
SECUNIA-25861
SECUNIA-26083
OSVDB-36637
ADV-2007-1919
GLSA-200706-04
MDKSA-2007:132
SUSE-SR:2007:014
USN-479-1
http://madwifi.org/ticket/1334
http://madwifi.org/wiki/Security
madwifi-ieee80211ioctlgetwmmparams-dos(34453)

CWE    1
CWE-119

© 2013 SecPod Technologies