Wireless Vulnerabilities & Exploits
Wireless Vulnerabilities & Exploits
WVE ID: WVE-2008-0010
Type: Vulnerability
Status: Candidate
Classification:
Description:
Some versions of the Marvell drivers used in access points such as the Netgear WN802T do not correctly parse the SSID information element tag contained in association request frames.
Discussion:
A malicious association request with a null SSID (e.g. zero length SSID) can trigger a denial of service or potential code execution condition on the targeted device.
Credits
Author:
Julien
Tinnes
(julien.tinnes@orange-ftgroup.com)
: Orange FT
Author:
Laurent
Butti
(laurent.butti@orange-ftgroup.com)
: Orange FT
References
URL:
http://www.securityfocus.com/archive/1/495983
Released: 2008-09-04
Submitter
: None
Submitted: Mon Sep 15 07:14:27 -0700 2008
Candidate Date: Wed Sep 17 12:29:24 -0700 2008
