CVE-2009-3836 | Vulnerability Database | Aqua Security

ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service (Access Point crash) via a malformed 802.11 Association Request management frame.

Affected Software

Name	Vendor	Start Version	End Version
Arubaos	Arubanetworks	3.1.1-rn (including)	3.1.1-rn (including)
Arubaos	Arubanetworks	3.3.1.16 (including)	3.3.1.16 (including)
Arubaos	Arubanetworks	3.3.1.29 (including)	3.3.1.29 (including)
Arubaos	Arubanetworks	3.3.1.30 (including)	3.3.1.30 (including)
Arubaos	Arubanetworks	3.3.2.6 (including)	3.3.2.6 (including)
Arubaos	Arubanetworks	3.3.2.14-fips (including)	3.3.2.14-fips (including)
Arubaos	Arubanetworks	3.4.0 (including)	3.4.0 (including)

References

http://secunia.com/advisories/37085
http://www.arubanetworks.com/support/alerts/aid-102609.asc
http://www.securityfocus.com/bid/36832
http://www.vupen.com/english/advisories/2009/3051

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-3836
CWE	https://cwe.mitre.org/data/definitions/.html