CVE-2007-5448

madwifi < 0.9.3.2 - Denial of Service via Malformed Beacon Frame

Title source: llm
STIX 2.1

Description

Madwifi 0.9.3.2 and earlier allows remote attackers to cause a denial of service (panic) via a beacon frame with a large length value in the extended supported rates (xrates) element, which triggers an assertion error, related to net80211/ieee80211_scan_ap.c and net80211/ieee80211_scan_sta.c.

References (13)

Core 13
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/26052
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27197
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2008:007
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/37182
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3225
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/482168/100/0/threaded
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3493
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/27541
Patch x_refsource_confirm
http://madwifi.org/changeset/2736
Third Party Advisory vendor-advisory x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200711-09.xml
Issue Tracking x_refsource_confirm
http://bugs.gentoo.org/show_bug.cgi?id=195705
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28431
Various Sources x_refsource_misc
http://www.sec-consult.com/298.html

Scores

EPSS 0.0197
EPSS Percentile 78.1%

Details

CWE
CWE-20
Status published
Products (1)
madwifi/madwifi < 0.9.3.2
Published Oct 14, 2007
Tracked Since Feb 18, 2026