| ID |
CVE-2007-2829
|
| Summary |
The 802.11 network stack in net80211/ieee80211_input.c in MadWifi before 0.9.3.1 allows remote attackers to cause a denial of service (system hang) via a crafted length field in nested 802.3 Ethernet frames in Fast Frame packets, which results in a NULL pointer dereference. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:madwifi:madwifi:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:madwifi:madwifi:0.9.0:*:*:*:*:*:*:*
-
cpe:2.3:a:madwifi:madwifi:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:madwifi:madwifi:0.9.1:*:*:*:*:*:*:*
-
cpe:2.3:a:madwifi:madwifi:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:madwifi:madwifi:0.9.2:*:*:*:*:*:*:*
-
cpe:2.3:a:madwifi:madwifi:0.9.2.1:*:*:*:*:*:*:*
cpe:2.3:a:madwifi:madwifi:0.9.2.1:*:*:*:*:*:*:*
-
cpe:2.3:a:madwifi:madwifi:*:*:*:*:*:*:*:*
cpe:2.3:a:madwifi:madwifi:*:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 5.0 (as of 16-10-2018 - 16:45) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
NONE |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
| refmap
via4
|
| bid | 24114 | | bugtraq | 20070606 FLEA-2007-0021-2: madwifi | | confirm | | | gentoo | GLSA-200706-04 | | mandriva | MDKSA-2007:132 | | osvdb | 36635 | | secunia | - 25339
- 25622
- 25763
- 25861
- 26083
| | suse | SUSE-SR:2007:014 | | ubuntu | USN-479-1 | | vupen | ADV-2007-1919 | | xf | madwifi-fastframe-dos(34455) |
|
| Last major update |
16-10-2018 - 16:45 |
| Published |
24-05-2007 - 02:30 |
| Last modified |
16-10-2018 - 16:45 |
