Vulnerability Note VU#191336
Apple Airport driver fails to properly handle probe response frames
A buffer overflow in certain Apple AirPort drivers may allow an attacker to execute arbitrary code with system privileges, or create a denial-of-service condition.
A buffer overflow vulnerability has been reported in Orinoco-based Airport drivers. An attacker within radio range may be able to trigger the overflow by sending a specially-crafted 802.11 management frame to a vulnerable system. Since 802.11b and 802.11g management frames are not encrypted, using wireless encryption (WEP/WPA) does not mitigate this vulnerability.
A remote, unauthenticated attacker may be able to execute arbitrary code with system privileges.
Disable wireless adapters
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Apple Computer, Inc.||Affected||01 Nov 2006||29 Nov 2006|
CVSS Metrics (Learn More)
Thanks to HD Moore for providing information about this vulnerability.
This document was written by Ryan Giobbi.
- CVE IDs: CVE-2006-5710
- Date Public: 01 Nov 2006
- Date First Published: 30 Nov 2006
- Date Last Updated: 30 Nov 2006
- Severity Metric: 0.34
- Document Revision: 18
If you have feedback, comments, or additional information about this vulnerability, please send us email.