6.3
CVE-2008-1144
- EPSS 1.86%
- Veröffentlicht 05.09.2008 16:08:00
- Zuletzt bearbeitet 16.06.2026 22:51:04
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Marvell driver for the Netgear WN802T Wi-Fi access point with firmware 1.3.16 on the Marvell 88W8361P-BEM1 chipset does not properly parse EAPoL-Key packets, which allows remote authenticated users to cause a denial of service (device reboot or hang) or possibly execute arbitrary code via a malformed EAPoL-Key packet with a crafted "advertised length."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.86% | 0.765 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.3 | 6.8 | 6.9 |
AV:N/AC:M/Au:S/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://secunia.com/advisories/31770
http://securityreason.com/securityalert/4227
http://www.securityfocus.com/archive/1/495982/100/0/threaded
http://www.securityfocus.com/bid/31013
https://exchange.xforce.ibmcloud.com/vulnerabilities/44919