Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0226

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-0226
Last Modified 05 Sep 2008 04:58:41
Published 18 Jan 2006 08:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0226

Summary

Integer overflow in IEEE 802.11 network subsystem (ieee80211_ioctl.c) in FreeBSD before 6.0-STABLE, while scanning for wireless networks, allows remote attackers to execute arbitrary code by broadcasting crafted (1) beacon or (2) probe response frames.

Vulnerable Systems

Operating System

  • Freebsd 6.0


References

BID - 16296

SECUNIA - 18353

MISC - http://www.signedness.org/advisories/sps-0x1.txt

FREEBSD - FreeBSD-SA-06:05

XF - bsd-ieee80211-bo(24192)

OSVDB - 22537

MISC - http://www.blackhat.com/html/bh-europe-07/bh-eu-07-speakers.html#Eriksson

SECTRACK - 1015518

MISC - http://kernelwars.blogspot.com/2007/01/alive.html


Last Updated: 27 May 2016 10:41:35