Bug#446824: CVE-2007-5448 remote denial of service via crafted beacon frame
Kel Modderman
kel at otaku42.de
Tue Oct 16 09:00:49 UTC 2007
tags 446824 pending
thanks
On Tue, 16 Oct 2007 08:37:31 am Nico Golde wrote:
> | Madwifi 0.9.3.2 and earlier allows remote attackers to cause a denial
> | of service (panic) via a beacon frame with a large length value in the
> | extended supported rates (xrates) element, which triggers an assertion
> | error, related to net80211/ieee80211_scan_ap.c and
> | net80211/ieee80211_scan_sta.c.
net80211/ieee80211_scan_ap.c in not vulnerable in any stable release from
madwifi.org[0], the CVE is slightly misleading in regards to that detail.
Package awaiting sponsorship.
Thanks, Kel.
[0] http://madwifi.org/changeset/2749
More information about the Pkg-madwifi-maintainers
mailing list