Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0376

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0376
Last Modified 05 Sep 2008 04:59:05
Published 22 Jan 2006 03:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0376

Summary

The 802.11 wireless client in certain operating systems including Windows 2000, Windows XP, and Windows Server 2003 does not warn the user when (1) it establishes an association with a station in ad hoc (aka peer-to-peer) mode or (2) a station in ad hoc mode establishes an association with it, which allows remote attackers to put unexpected wireless communication into place.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server R2

  • Microsoft Windows Xp


References

MISC - http://www.theta44.org/karma/

BUGTRAQ - 20060114 [NMRC Advisory] Microsoft Windows Wireless Exposure on Laptops

MISC - http://www.securiteam.com/windowsntfocus/5YP0D2KHHO.html

MISC - http://www.nmrc.org/pub/advise/20060114.txt

SECTRACK - 1015489

XF - windows-wireless-adhoc-unauth-access(24157)

SREASON - 349


Last Updated: 27 May 2016 10:41:38