CVE-2006-6059

NetGear MA521 Driver < 5.148.724.2003 - Buffer Overflow via Long Supported Rates Information Element

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6059. PoCs published by Laurent Butti.

AI-analyzed exploit summary This exploit targets a stack-based buffer overflow in the NetGear MA521 wireless driver (MA521nd5.SYS) by sending malformed beacon frames with an oversized supported rates information element. It causes a denial-of-service (kernel crash) and is a proof-of-concept for potential remote code execution.

Description

Buffer overflow in MA521nd5.SYS driver 5.148.724.2003 for NetGear MA521 PCMCIA adapter allows remote attackers to execute arbitrary code via (1) beacon or (2) probe 802.11 frame responses with an long supported rates information element. NOTE: this issue was reported as a "memory corruption" error, but the associated exploit code suggests that it is a buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Laurent Butti · rubyremotewindows

https://www.exploit-db.com/exploits/29096

View Code ZIP pw:eip

This exploit targets a stack-based buffer overflow in the NetGear MA521 wireless driver (MA521nd5.SYS) by sending malformed beacon frames with an oversized supported rates information element. It causes a denial-of-service (kernel crash) and is a proof-of-concept for potential remote code execution.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: NetGear MA521 Wireless Driver (MA521nd5.SYS) version 5.148.724.2003

No auth needed

Prerequisites: Physical proximity to the target's wireless network · Supported wireless card and Lorcon library on Linux

MITRE ATT&CK