Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5938

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5938
Last Modified 07 Mar 2011 10:01:32
Published 06 Dec 2007 10:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5938

Summary

The iwl_set_rate function in compatible/iwl3945-base.c in iwlwifi 1.1.21 and earlier dereferences an iwl_get_hw_mode return value without checking for NULL, which might allow remote attackers to cause a denial of service (kernel panic) via unspecified vectors during module initialization.

Vulnerable Systems


References

VUPEN - ADV-2007-4211

OSVDB - 44749

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=199209

MISC - http://article.gmane.org/gmane.linux.drivers.ipw3945.devel/1618

BID - 26842

REDHAT - RHSA-2008:0154

CONFIRM - http://www.intellinuxwireless.org/repos/?p=iwlwifi.git;a=commitdiff;h=25db44d4cdfe31d59223d74cb577f4a71aff1a40

SECUNIA - 29236


Last Updated: 27 May 2016 10:46:20