CVE-2010-1159
aircrack-ng < 1.1 - Heap-Based Buffer Overflow via EAPOL Packet
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-1159. PoCs published by Lukas Lueg.
AI-analyzed exploit summary This exploit generates a malformed IEEE802.11 packet with an oversized EAPOL length field to trigger a heap overflow in aircrack-ng tools (up to SVN r1675). The crafted packet can cause memory corruption, potentially leading to arbitrary code execution with root privileges.
Description
Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a (1) large length value in an EAPOL packet or (2) long EAPOL packet.
Exploits (1)
This exploit generates a malformed IEEE802.11 packet with an oversized EAPOL length field to trigger a heap overflow in aircrack-ng tools (up to SVN r1675). The crafted packet can cause memory corruption, potentially leading to arbitrary code execution with root privileges.