5

CVE-2007-5938

Exploit
The iwl_set_rate function in compatible/iwl3945-base.c in iwlwifi 1.1.21 and earlier dereferences an iwl_get_hw_mode return value without checking for NULL, which might allow remote attackers to cause a denial of service (kernel panic) via unspecified vectors during module initialization.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IntelPro Wireless 3945abg Version1.1.21
IntelWireless Wifi Link 4965agn Version1.1.21
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.14% 0.797
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/29236
http://www.redhat.com/support/errata/RHSA-2008-0154.html
http://article.gmane.org/gmane.linux.drivers.ipw3945.devel/1618
http://bugs.gentoo.org/show_bug.cgi?id=199209
Exploit
http://osvdb.org/44749
http://www.intellinuxwireless.org/repos/?p=iwlwifi.git%3Ba=commitdiff%3Bh=25db44d4cdfe31d59223d74cb577f4a71aff1a40
http://www.securityfocus.com/bid/26842
http://www.vupen.com/english/advisories/2007/4211
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10787