CVE-2007-2831

EPSS 2.17%
Veröffentlicht 24.05.2007 02:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Array index error in the (1) ieee80211_ioctl_getwmmparams and (2) ieee80211_ioctl_setwmmparams functions in net80211/ieee80211_wireless.c in MadWifi before 0.9.3.1 allows local users to cause a denial of service (system crash), possibly obtain kernel memory contents, and possibly execute arbitrary code via a large negative array index value.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 19

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Madwifi ≫ Madwifi Version <= 0.9.3

Madwifi ≫ Madwifi Version0.9.0

Madwifi ≫ Madwifi Version0.9.1

Madwifi ≫ Madwifi Version0.9.2

Madwifi ≫ Madwifi Version0.9.2.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.17%	0.839

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://secunia.com/advisories/26083

Vendor Advisory

http://www.novell.com/linux/security/advisories/2007_14_sr.html

http://secunia.com/advisories/25861

Vendor Advisory

http://www.ubuntu.com/usn/usn-479-1

http://madwifi.org/wiki/Security

Patch

http://secunia.com/advisories/25339

Vendor Advisory

http://secunia.com/advisories/25622

Vendor Advisory