CVE-2009-4027

2009-12-0216:30:00

CWE-362

[email protected]

web.nvd.nist.gov

cve-2009-4027

linux kernel

mac80211

race condition

denial of service

nvd

6.2 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.053 Low

EPSS

Percentile

93.0%

JSON

Race condition in the mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service (system crash) via a Delete Block ACK (aka DELBA) packet that triggers a certain state change in the absence of an aggregation session.

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.27.29
linux:linux_kernellinux linux kerneleq2.6.27.12
linux:linux_kernellinux linux kerneleq2.6.20.6
linux:linux_kernellinux linux kerneleq2.6.20.9
linux:linux_kernellinux linux kerneleq2.6.11
linux:linux_kernellinux linux kerneleq2.6.23.4
linux:linux_kernellinux linux kerneleq2.6.22.15
linux:linux_kernellinux linux kerneleq2.6.16.16
linux:linux_kernellinux linux kerneleq2.6.18.7
linux:linux_kernellinux linux kerneleq2.6.17.12

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.27.29
linux:linux_kernel	linux linux kernel	eq	2.6.27.12
linux:linux_kernel	linux linux kernel	eq	2.6.20.6
linux:linux_kernel	linux linux kernel	eq	2.6.20.9
linux:linux_kernel	linux linux kernel	eq	2.6.11
linux:linux_kernel	linux linux kernel	eq	2.6.23.4
linux:linux_kernel	linux linux kernel	eq	2.6.22.15
linux:linux_kernel	linux linux kernel	eq	2.6.16.16
linux:linux_kernel	linux linux kernel	eq	2.6.18.7
linux:linux_kernel	linux linux kernel	eq	2.6.17.12