OSVDB ID: 34645

Title: MadWifi ieee80211_input.c CSA IEs Processing DoS

Info

Disclosure

Mar 19, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Unknown or Incomplete

Classification

Attack Type: Denial of Service
Impact: Loss of Availability
Disclosure: Vendor Verified

Solution

Upgrade to version 0.9.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Madwifi

Driver

0.9.2.1

References

CVE ID: 2006-7179 (see also: NVD)
Bugtraq ID: 23436
Secunia Advisory ID: 24670 24841 24931 26083
Related OSVDB ID: 34643 34644 34646
VUPEN Advisory: ADV-2007-1187
Mail List Post: http://archives.neohapsis.com/archives/apps/freshmeat/2007-03/0019.html
Other Advisory URL: http://dev.lintrack.org/ticket/101
http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00009.html
http://www.gentoo.org/security/en/glsa/glsa-200704-15.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:082
Vendor Specific News/Changelog Entry: http://madwifi.org/ticket/963
http://madwifi.org/wiki/Releases/0.9.3
Vendor URL: http://www.madwifi.org/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/34645