Lucene search

[email protected]CVE-2002-0214

HistoryMay 16, 2002 - 4:00 a.m.

CVE-2002-0214

2002-05-1604:00:00

[email protected]

web.nvd.nist.gov

compaq

intel pro/wireless

driver

wep key

weak permission

security vulnerability

cve-2002-0214

nvd

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Compaq Intel PRO/Wireless 2011B LAN USB Device Driver 1.5.16.0 through 1.5.18.0 stores the 128-bit WEP (Wired Equivalent Privacy) key in plaintext in a registry key with weak permissions, which allows local users to decrypt network traffic by reading the WEP key from the registry key.

Affected configurations

NVD

Node

intelintel_pro_wireless_2011b_lan_usb_device_driverMatch1.5.16.0

intelintel_pro_wireless_2011b_lan_usb_device_driverMatch1.5.18.0

CPENameOperatorVersion
intel:intel_pro_wireless_2011b_lan_usb_device_driverintel intel pro wireless 2011b lan usb device drivereq1.5.16.0
intel:intel_pro_wireless_2011b_lan_usb_device_driverintel intel pro wireless 2011b lan usb device drivereq1.5.18.0

CPE	Name	Operator	Version
intel:intel_pro_wireless_2011b_lan_usb_device_driver	intel intel pro wireless 2011b lan usb device driver	eq	1.5.16.0
intel:intel_pro_wireless_2011b_lan_usb_device_driver	intel intel pro wireless 2011b lan usb device driver	eq	1.5.18.0

References

online.securityfocus.com/archive/1/252607

www.iss.net/security_center/static/8015.php

www.securityfocus.com/bid/3968

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-0214

cvelist1 nvd1