CVE-2008-5134
6.6 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.089 Low
EPSS
Percentile
94.5%
Buffer overflow in the lbs_process_bss function in drivers/net/wireless/libertas/scan.c in the libertas subsystem in the Linux kernel before 2.6.27.5 allows remote attackers to have an unknown impact via an “invalid beacon/probe response.”
References
article.gmane.org/gmane.linux.kernel.wireless.general/23049
git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.27.y.git%3Ba=commit%3Bh=48735d8d8bd701b1e0cd3d49c21e5e385ddcb077
lists.opensuse.org/opensuse-security-announce/2009-01/msg00006.html
openwall.com/lists/oss-security/2008/11/11/2
secunia.com/advisories/32998
secunia.com/advisories/33641
secunia.com/advisories/33706
secunia.com/advisories/33854
www.debian.org/security/2008/dsa-1681
www.redhat.com/support/errata/RHSA-2009-0053.html
www.securityfocus.com/bid/32484
bugzilla.redhat.com/show_bug.cgi?id=470761
usn.ubuntu.com/714-1/
Social References
More
Related
6.6 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.089 Low
EPSS
Percentile
94.5%