Published: 21/06/2012 Updated: 13/02/2023

CVSS v2 Base Score: 3.3 | Impact Score: 2.9 | Exploitability Score: 6.5

VMScore: 295

Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N

The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel prior to 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote malicious users to obtain access to a Wi-Fi network by reading Wi-Fi frames.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
linux linux kernel 2.6.36.3
linux linux kernel 2.6.36.1
linux linux kernel 2.6.36.2

Multiple kernel flaws ...

An attacker could send crafted input to the kernel and cause it to crash ...

Multiple kernel flaws have been fixed ...

NVD-CWE-noinfo http://www.openwall.com/lists/oss-security/2011/01/06/18 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 https://bugzilla.redhat.com/show_bug.cgi?id=667907 https://github.com/torvalds/linux/commit/0a54917c3fc295cb61f3fb52373c173fd3b69f48 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0a54917c3fc295cb61f3fb52373c173fd3b69f48 https://nvd.nist.gov https://usn.ubuntu.com/1081-1/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-4648

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect