Broadcom BCM4325 and BCM4329 wireless chipsets have been reported to contain an out-of-bounds read error condition that may be exploited to produce a denial-of-service condition.
The CORE Security Technologies advisory states:
"An out-of-bounds read error condition exists in broadcom's BCM4325 and BCM4329 combo solutions firmware. This error can be leveraged to denial of service attack, and possibly information disclosure. An attacker can send a RSN (802.11i) information element, that causes the WiFi NIC to stop responding."
Broadcom has been working with multiple customers providing information and fixes as required, and will continue to address security issues that may be identified."
Additional details can be found in the CORE Security Technologies advisory.
A remote attacker may be able to cause a denial-of-service condition against the WiFi network interface card.
Apply an Update
Thanks to Andres Blanco and Matias Eissler for reporting this vulnerability.
|Date First Published:||2012-10-23|
|Date Last Updated:||2013-01-28 21:00 UTC|