Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0282

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-0282
Last Modified 29 Dec 2010 12:00:00
Published 27 Jan 2009 01:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0282

Summary

Integer overflow in Ralink Technology USB wireless adapter (RT73) 3.08 for Windows, and other wireless card drivers including rt2400, rt2500, rt2570, and rt61, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Probe Request packet with a long SSID, possibly related to an integer signedness error.

Vulnerable Systems


References

BID - 33340

BUGTRAQ - 20090118 Ralinktech wireless cards drivers vulnerability

DEBIAN - DSA-1714

DEBIAN - DSA-1713

DEBIAN - DSA-1712

GENTOO - GLSA-200907-08

SECUNIA - 35743

SECUNIA - 33699

SECUNIA - 33592

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=512995


Last Updated: 27 May 2016 10:50:11