Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:403152
HistoryNov 27, 2006 - 12:00 a.m.

NetGear wireless driver fails to properly process specially-crafted 802.11 management frames

2006-11-2700:00:00
www.kb.cert.org
7

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.122

Percentile

95.4%

JSON

Overview

A buffer overflow vulnerability exists in the Netgear WG311ND5.SYS wireless driver. Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code, or cause a denial-of-service condition.

Description

The WG311ND5.SYS driver is a wireless (802.11g) device driver produced by Netgear that ships with the WG311v1 wireless adapter.

A heap buffer overflow vulnerability has been reported in the WG311ND5.SYS driver. This overflow occurs because the driver does not properly process the SSID information element part of 802.11 management frames. An attacker within radio range may be able to trigger the overflow by sending a specially-crafted 802.11 management frame to a vulnerable system. Since 802.11b and 802.11g management frames are not encrypted or authenticated, using wireless encryption (WEP/WPA) does not mitigate this vulnerability.

Note that Linux or Unix systems that use NDISWrapper or similar technologies to load the WG311ND5.SYS driver may also be vulnerable.

Impact

An attacker may be able to execute arbitrary code, or cause a denial-of-service condition.

Solution

We are currently unaware of a practical solution to this problem.

Disable wireless adapters

Disabling wireless adapters may reduce the chances of this vulnerability being exploited.

Vendor Information

403152

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Netgear, Inc. Affected

Updated: November 24, 2006

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

This issue was reported by Laurent Butti, H D Moore and LMH on the Month of Kernel Bugs website.

This document was written by Ryan Giobbi.

Other Information

CVE IDs: CVE-2006-6125
Severity Metric: 0.50 Date Public:

Related

nvd 1
cvelist 1
exploitdb 1
cve 1
nvd
nvd
CVE-2006-6125
2006-11-27 00:07:00
cvelist
cvelist
CVE-2006-6125
2006-11-27 00:00:00
exploitdb
exploitdb
Netgear WG311v1 Wireless Driver 2.3.1.10 - SSID Heap Buffer Overflow
2006-11-22 00:00:00
cve
cve
CVE-2006-6125
2006-11-27 00:07:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.122

Percentile

95.4%

JSON
Related for VU:403152
nvd1cvelist1exploitdb1cve1