An issue exists on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 (i.e., LLC/SNAP) header for EAPOL. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
samsung galaxy_i9305_firmware 4.4.4 |
||
arista c-250_firmware |
||
arista c-260_firmware |
||
arista c-230_firmware |
||
arista c-235_firmware |
||
arista c-200_firmware |
||
arista c-120_firmware |
||
arista c-130_firmware |
||
arista c-100_firmware |
||
arista c-110_firmware |
||
arista o-105_firmware |
||
arista w-118_firmware |
||
arista c-75_firmware - |
||
arista o-90_firmware - |
||
arista c-65_firmware - |
||
arista w-68_firmware - |
||
siemens scalance_w700_ieee_802.11ax_firmware |
||
siemens scalance_w700_ieee_802.11n_firmware |