MadWifi Auth Frame IBSS Remote Denial of Service Vulnerability
BID:23431
Info
MadWifi Auth Frame IBSS Remote Denial of Service Vulnerability
| Bugtraq ID: | 23431 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2006-7178 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 11 2007 12:00AM |
| Updated: | Jul 24 2007 04:55AM |
| Credit: | [email protected] is credited with the discovery of this vulnerability. |
| Vulnerable: |
Ubuntu Ubuntu Linux 7.04 sparc Ubuntu Ubuntu Linux 7.04 powerpc Ubuntu Ubuntu Linux 7.04 i386 Ubuntu Ubuntu Linux 7.04 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 SuSE Linux Desktop 10 Pardus Linux 2007.1 Mandriva Linux Mandrake 2007.1 x86_64 Mandriva Linux Mandrake 2007.1 Mandriva Linux Mandrake 2007.0 x86_64 Mandriva Linux Mandrake 2007.0 MADWifi MADWifi 0.9.2 MADWifi MADWifi 0.9.2.1 Gentoo net-wireless/madwifi-ng 0.9.2.1 Foresight Linux Foresight Linux 1.1 |
| Not Vulnerable: |
MADWifi MADWifi 0.9.3 Gentoo net-wireless/madwifi-ng 0.9.3 |
Discussion
MadWifi Auth Frame IBSS Remote Denial of Service Vulnerability
MADWifi is prone to a remote denial-of-service vulnerability because the application fails to handle certain AUTH frames from an IBSS node.
An attacker can exploit this issue to cause the affected computer to crash, denying further service to legitimate users.
This issue affects MADWifi 0.9.3 and prior versions.
MADWifi is prone to a remote denial-of-service vulnerability because the application fails to handle certain AUTH frames from an IBSS node.
An attacker can exploit this issue to cause the affected computer to crash, denying further service to legitimate users.
This issue affects MADWifi 0.9.3 and prior versions.
Exploit / POC
MadWifi Auth Frame IBSS Remote Denial of Service Vulnerability
An attacker can exploit this issue by using standard network utilities.
An attacker can exploit this issue by using standard network utilities.
Solution / Fix
MadWifi Auth Frame IBSS Remote Denial of Service Vulnerability
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Solution:
The vendor released an update to address this issue. Please see the references for more information.
References
MadWifi Auth Frame IBSS Remote Denial of Service Vulnerability
References:
References:
- MADWiFi Homepage (MADWiFi)
- MADWifi Release Notes 0.9.3 (MADWifi)
- malicious ad-hoc auth frame crashes the system (MADWifi)