Lucene search
K

15 matches found

seebug.org
seebug.org
added 2009/11/16 12:0 a.m.32 views

Linksys WAP4400N关联请求远程拒绝服务漏洞

BUGTRAQ ID: 37017 CVE ID: CVE-2007-5475 Linksys WAP4400N是一款小型的无线路由器。 Linksys WAP4400N所使用的MARVELL 88W8361P-BEM1无线芯片组驱动没有正确地解析关联请求中所包含的速率、扩展速率等信息元素,通过802.11认证的用户可以通过向无线AP发送恶意请求导致设备重启或挂起。 0 Cisco Linksys WAP4400N 1.2.17 厂商补丁: Cisco ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

6.8CVSS6.4AI score0.01857EPSS
Exploits2
Prion
Prion
added 2009/11/12 11:30 p.m.17 views

Buffer overflow

Multiple buffer overflows in the Marvell wireless driver, as used in Linksys WAP4400N Wi-Fi access point with firmware 1.2.17 on the Marvell 88W8361P-BEM1 chipset, and other products, allow remote 802.11-authenticated users to cause a denial of service wireless access point crash and possibly...

6.8CVSS8.5AI score0.01857EPSS
Exploits2References3Affected Software1
Prion
Prion
added 2008/10/17 8:33 p.m.16 views

Design/Logic Flaw

Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N firmware 1.2.14 on the Marvell Semiconductor 88W8361P-BEM1 chipset has unknown impact and attack vectors, probably remote...

10CVSS7.2AI score0.01495EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/10/17 8:0 p.m.17 views

CVE-2008-4594

Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N firmware 1.2.14 on the Marvell Semiconductor 88W8361P-BEM1 chipset has unknown impact and attack vectors, probably remote...

6.7AI score0.01495EPSS
Exploits0References4
CVE
CVE
added 2008/10/17 8:0 p.m.45 views

CVE-2008-4594

Technical details for CVE-2008-4594 are not publicly available in the provided documents. The entries describe an unspecified SNMPv3 vulnerability with unknown impact; monitor for updates from official advisories.

10CVSS6.7AI score0.01495EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/10/14 3:0 p.m.26 views

CVE-2008-4441

The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service reboot or hang-up via a malformed...

6.5AI score0.0163EPSS
Exploits1References6
CVE
CVE
added 2008/10/14 3:0 p.m.50 views

CVE-2008-4441

Summary: CVE-2008-4441 affects Linksys WAP4400N (firmware 1.2.14) with Marvell 88W8361P‑BEM1. When in WEP mode, the Marvell wireless driver fails to parse certain malformed 802.11 frames, enabling a remote attacker to cause a denial of service (reboot or hang) by sending a malformed association r...

7.1CVSS6.5AI score0.0163EPSS
Exploits1References6Affected Software1
securityvulns
securityvulns
added 2008/10/14 12:0 a.m.55 views

Marvell Driver Malformed Association Request Vulnerability

Title: ------ Marvell Driver Malformed Association Request Vulnerability Summary: -------- The wireless drivers in some Wi-Fi access points such as the MARVELL-based Linksys WAP4400N do not correctly parse some malformed 802.11 frames. Assigned CVE: ------------- CVE-2008-4441 Details: -------- T...

7.1CVSS1.6AI score0.0163EPSS
Exploits1
seebug.org
seebug.org
added 2008/09/10 12:0 a.m.38 views

NETGEAR WN802T Wireless Access Point EAPoL密钥长度拒绝服务漏洞

BUGTRAQ ID: 31013 CVE ID:CVE-2008-1144 CNCVE ID:CNCVE-20081144 NETGEAR WN802T Wireless Access Point是一款无线路由接入点。 NETGEAR WN802T Wireless Access Point不正确处理EAPoL报文中的超长密钥长度,远程攻击者可以利用漏洞对服务进行拒绝服务攻击。 发送特殊构建的EAPoL报文可触发此漏洞,不过只有通过802.11验证后才能利用无线访问接入点的"Open"模式配置和成功关联恰当的安全参数如WPA w/ TKIP unicast, TKIP multicas...

6.3CVSS6.4AI score0.01864EPSS
Exploits1
securityvulns
securityvulns
added 2008/09/07 12:0 a.m.52 views

Marvell Driver Null SSID Association Request Vulnerability

Title: ------ Marvell Driver Null SSID Association Request Vulnerability Summary: ------ The wireless drivers in some Wi-Fi access points such as the MARVELL-based Netgear WN802T do not correctly parse SSID information element included in association requests. Most information elements are used b...

6.3CVSS1.8AI score0.01864EPSS
Exploits0
securityvulns
securityvulns
added 2008/09/07 12:0 a.m.59 views

Marvell Driver EAPoL-Key Length Overflow

Title: ------ Marvell Driver EAPoL-Key Length Overflow Summary: -------- The wireless drivers in some Wi-Fi access points such as the MARVELL-based Netgear WN802T do not correctly parse malformed EAPoL-Key packets. This packet is used for unicast/multicast key derivation which are called 4-way...

6.3CVSS0.6AI score0.01864EPSS
Exploits1
Prion
Prion
added 2008/09/05 4:8 p.m.14 views

Cross site request forgery (csrf)

The Marvell driver for the Netgear WN802T Wi-Fi access point with firmware 1.3.16 on the Marvell 88W8361P-BEM1 chipset does not properly parse the SSID information element in an association request, which allows remote authenticated users to cause a denial of service device reboot or hang or...

6.3CVSS7.9AI score0.01864EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2008/09/05 4:0 p.m.66 views

CVE-2008-1197

CVE-2008-1197 affects Netgear WN802T (firmware 1.3.16) using Marvell 88W8361P-BEM1. The driver fails to correctly parse the SSID information element in an association request, enabling remote authenticated users to trigger a denial of service (device reboot/hang) and potentially execute arbitrary...

6.3CVSS7.5AI score0.01864EPSS
Exploits0References5Affected Software2
CVE
CVE
added 2008/09/05 4:0 p.m.58 views

CVE-2008-1144

CVE-2008-1144 affects the Netgear WN802T Wi‑Fi AP with Marvell 88W8361P‑BEM1, where the Marvell driver mishandles EAPoL‑Key packets. A crafted EAPoL‑Key with an advertised length can be used by remote authenticated users to cause a denial of service (device reboot or hang) and may enable arbitrar...

6.3CVSS7.6AI score0.01864EPSS
Exploits1References5Affected Software2
Cvelist
Cvelist
added 2008/09/05 4:0 p.m.22 views

CVE-2008-1144

The Marvell driver for the Netgear WN802T Wi-Fi access point with firmware 1.3.16 on the Marvell 88W8361P-BEM1 chipset does not properly parse EAPoL-Key packets, which allows remote authenticated users to cause a denial of service device reboot or hang or possibly execute arbitrary code via a...

7.5AI score0.01864EPSS
Exploits1References5
Rows per page
Query Builder