- Description
- The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service (reboot or hang-up) via a malformed association request containing the WEP flag, as demonstrated by a request that is too short, a different vulnerability than CVE-2008-1144 and CVE-2008-1197.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.1
- Impact score
- 6.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:C
- nvd@nist.gov
- CWE-20
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:linksys:wap400n:1.2.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0CE5313-A2B1-4343-8405-FD471CB3C0F0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:marvell:88w8361p-bem1:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4E1A6CCA-F8A6-4018-8A51-6AD1B60BBC85"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]