Lucene search

GoogleOSV:DSA-788-1

HistoryAug 29, 2005 - 12:00 a.m.

kismet - several

2005-08-2900:00:00

Google

osv.dev

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.139 Low

EPSS

Percentile

94.9%

JSON

Several security related problems have been discovered in kismet, a
wireless 802.11b monitoring tool. The Common Vulnerabilities and
Exposures project identifies the following problems:

CAN-2005-2626
Insecure handling of unprintable characters in the SSID.
CAN-2005-2627
Multiple integer underflows could allow remote attackers to
execute arbitrary code.

The old stable distribution (woody) does not seem to be affected by
these problems.

For the stable distribution (sarge) these problems have been fixed in
version 2005.04.R1-1sarge1.

For the unstable distribution (sid) these problems have been fixed in
version 2005.08.R1-1.

We recommend that you upgrade your kismet package.

CPENameOperatorVersion
kismeteq2005.04.R1-1

CPE	Name	Operator	Version
	kismet	eq	2005.04.R1-1

References

www.debian.org/security/2005/dsa-788

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.139 Low

EPSS

Percentile

94.9%

JSON

Related for OSV:DSA-788-1