Multiple integer underflows in Kismet before 2005-08-R1 allow remote attackers to execute arbitrary code via (1) kernel headers in a pcap file or (2) data frame dissection, which leads to heap-based buffer overflows.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Kismet | Kismet | 2.4.5 | 2.4.5 |
Kismet | Kismet | 2.4.6 | 2.4.6 |
Kismet | Kismet | 2.6.0 | 2.6.0 |
Kismet | Kismet | 2.8.0 | 2.8.0 |
Kismet | Kismet | 2.8.0a | 2.8.0a |
Kismet | Kismet | 2.8.1 | 2.8.1 |
Kismet | Kismet | 2004-02_r1 | 2004-02_r1 |
Kismet | Kismet | 2004-04_r1 | 2004-04_r1 |
Kismet | Kismet | 2004-04_r1a | 2004-04_r1a |
Kismet | Kismet | 2004-10_r1 | 2004-10_r1 |
Kismet | Kismet | 2005-01_r1 | 2005-01_r1 |
Kismet | Kismet | 2005-04_r1 | 2005-04_r1 |
Kismet | Kismet | 2005-06_r1 | 2005-06_r1 |
Kismet | Kismet | 2005-07_bsd | 2005-07_bsd |
Kismet | Kismet | 2005-07_r1 | 2005-07_r1 |
Kismet | Kismet | 2005-07_r1a | 2005-07_r1a |
Kismet | Ubuntu | dapper | * |
Kismet | Ubuntu | devel | * |
Kismet | Ubuntu | edgy | * |
Kismet | Ubuntu | feisty | * |