Lucene search

K
gentooGentoo FoundationGLSA-200901-01
HistoryJan 11, 2009 - 12:00 a.m.

NDISwrapper: Arbitrary remote code execution

2009-01-1100:00:00
Gentoo Foundation
security.gentoo.org
14

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.055 Low

EPSS

Percentile

93.1%

Background

NDISwrapper is a Linux kernel module that enables the use of Microsoft Windows drivers for wireless network devices.

Description

Anders Kaseorg reported multiple buffer overflows related to long ESSIDs.

Impact

A physically proximate attacker could send packets over a wireless network that might lead to the execution of arbitrary code with root privileges.

Workaround

There is no known workaround at this time.

Resolution

All NDISwrapper users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-wireless/ndiswrapper-1.53-r1"
OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-wireless/ndiswrapper< 1.53-r1UNKNOWN

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.055 Low

EPSS

Percentile

93.1%