Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1144

Overview

Vulnerability Score 6.3 6.3
CVE Id CVE-2008-1144
Last Modified 19 Aug 2009 01:12:33
Published 05 Sep 2008 12:08:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2008-1144

Summary

The Marvell driver for the Netgear WN802T Wi-Fi access point with firmware 1.3.16 on the Marvell 88W8361P-BEM1 chipset does not properly parse EAPoL-Key packets, which allows remote authenticated users to cause a denial of service (device reboot or hang) or possibly execute arbitrary code via a malformed EAPoL-Key packet with a crafted "advertised length."

Vulnerable Systems


References

XF - netgear-wn802t-eapolkey-dos(44919)

BID - 31013

BUGTRAQ - 20080904 Marvell Driver EAPoL-Key Length Overflow

SREASON - 4227

SECUNIA - 31770


Last Updated: 27 May 2016 10:47:02