Lucene search

[email protected]CVE-2009-0052

HistoryNov 12, 2009 - 11:30 p.m.

CVE-2009-0052

2009-11-1223:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

atheros

wireless driver

netgear

wndap330

denial of service

execute arbitrary code

cve-2009-0052

7.7 High

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:N/I:N/A:C

0.007 Low

EPSS

Percentile

80.0%

JSON

The Atheros wireless driver, as used in Netgear WNDAP330 Wi-Fi access point with firmware 2.1.11 and other versions before 3.0.3 on the Atheros AR9160-BC1A chipset, and other products, allows remote authenticated users to cause a denial of service (device reboot or hang) and possibly execute arbitrary code via a truncated reserved management frame.

CPENameOperatorVersion
netgear:wndap330_firmwarenetgear wndap330 firmwareeq2.1.11
atheros:ar9160-bc1a_chipsetatheros ar9160-bc1a chipseteq*

CPE	Name	Operator	Version
netgear:wndap330_firmware	netgear wndap330 firmware	eq	2.1.11
atheros:ar9160-bc1a_chipset	atheros ar9160-bc1a chipset	eq	*

References

secunia.com/advisories/37344

www.osvdb.org/59880

www.securityfocus.com/archive/1/507777/100/0/threaded

www.securityfocus.com/bid/36991

www.vupen.com/english/advisories/2009/3212

exchange.xforce.ibmcloud.com/vulnerabilities/54216

7.7 High

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:N/I:N/A:C

0.007 Low

EPSS

Percentile

80.0%

JSON

Related for CVE-2009-0052

securityvulns2 prion1 cvelist1