CVE-2008-5563

Published Dec 15, 2008

Last updated 6 years ago

CVSS info 7.8

Overview

Description: Aruba Mobility Controller 2.4.8.x-FIPS, 2.5.x, 3.1.x, 3.2.x, 3.3.1.x, and 3.3.2.x allows remote attackers to cause a denial of service (device crash) via a malformed Extensible Authentication Protocol (EAP) frame.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Evaluator

Comment: http://secunia.com/advisories/33057 Note: When using wireless, this only affects devices running in WPA/WPA2 Enterprise modes. The vulnerability is reported in ArubaOS 2.4.8.x-FIPS, 2.5.x, 3.1.x, 3.2.x, 3.3.1.x, and 3.3.2.x.
Impact: -
Solution: -

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.4.8:*:fips:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44656001-F500-4C94-A812-CA33C3D724FA"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.4.8.5:*:fips:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FEE7B77-6BD8-4011-958A-CBD27AA58D42"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.4.8.6:*:fips:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0531981C-71A8-4F18-ACB2-58809CD3FB8E"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.4.8.11:*:fips:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "454B3A9C-DA1D-47D1-AB6E-516A2E95F857"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.5.2.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E6DA11C-513C-41E1-AD52-AAF840D1D80F"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.5.4.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E20CDFF-3DD8-4E4F-B197-5E56C6497C35"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.5.4.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FAED6877-D23C-45AD-A237-161765E95450"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.5.4.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7726D164-2A1E-4DCE-B622-8A0A0EAF6E35"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDF1D87C-39D0-474B-B281-E705BA7414DA"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.5.5.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DDC018DB-DB29-467F-89EA-45603B077C4D"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:2.5.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC30277F-22D1-4564-B21E-A3C8A906E5F2"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controller:3.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FF53F8E-CE83-43BE-9998-83A72E1C4212"
          },
          {
            "criteria": "cpe:2.3:o:aruba_networks:aruba_mobility_controllers:3.1.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AEA70CD-4626-4D63-8B75-5FB7F3980259"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:aruba_mobility_controller:3.1.1.0:*:fips:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90D35907-7DAA-479A-A9D3-34062E03D8A8"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:aruba_mobility_controller:3.1.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D314CFDD-036D-4B7F-A688-CD7929513458"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:aruba_mobility_controller:3.2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "082E8702-E969-4EDE-8289-C4D526466E37"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:aruba_mobility_controller:3.3.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34AD9DE3-E466-4C79-AC14-2E6CA21A22D2"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:aruba_mobility_controller:3.3.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4F283EE-28E0-4DC3-A8B8-989277C094B4"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References