Lucene search
RootSSV:4439HistoryNov 13, 2008 - 12:00 a.m.
Linux Kernel ndiswrapper模块远程溢出漏洞
2008-11-1300:00:00
Root
www.seebug.org
18
0.055 Low
EPSS
Percentile
92.4%
BUGTRAQ ID: 32118
CVE(CAN) ID: CVE-2008-4395
Linux Kernel是开放源码操作系统Linux所使用的内核。
Linux Kernel的ndiswrapper模块内核驱动在处理无线网络报文时存在缓冲区溢出漏洞,如果远程攻击者在报文中包含了超长的ESSID的话,就可以触发这个溢出,导致执行任意代码。
Linux kernel 2.6
Linux
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href=“http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.27-7-generic-di_2.6.27-7.16_i386.udeb” target=“_blank”>http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.27-7-generic-di_2.6.27-7.16_i386.udeb</a>
Related
debian
debian
nessus
nessus
Debian DSA-1731-1 : ndiswrapper - buffer overflow
2009-03-04 00:00:00
SuSE 10 Security Update : ndiswrapper (ZYPP Patch Number 5834)
2011-01-27 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200901-01 (ndiswrapper)
2009-01-13 00:00:00
SLES9: Security update for ndiswrapper
2009-10-10 00:00:00
Ubuntu Update for linux-ubuntu-modules-2.6.22/24 vulnerability USN-662-2
2009-03-23 00:00:00
ubuntu
ubuntu
Ubuntu kernel modules vulnerability
2008-11-06 00:00:00
Linux kernel vulnerabilities
2008-11-05 00:00:00
debiancve
debiancve
CVE-2008-4395
2008-11-06 15:55:00
prion
prion
Buffer overflow
2008-11-06 15:55:00
gentoo
gentoo
NDISwrapper: Arbitrary remote code execution
2009-01-11 00:00:00
cve
cve
CVE-2008-4395
2008-11-06 15:55:00
ubuntucve
ubuntucve
CVE-2008-4395
2008-11-06 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-11-24 00:00:00
[USN-662-1] Linux kernel vulnerabilities
2008-11-05 00:00:00
suse
suse
denial of service in kernel
2008-12-04 18:25:26