1.5.18.0

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

intel

NVD

Published: 2002-05-16

Updated: 2008-09-11

Summary

Compaq Intel PRO/Wireless 2011B LAN USB Device Driver 1.5.16.0 through 1.5.18.0 stores the 128-bit WEP (Wired Equivalent Privacy) key in plaintext in a registry key with weak permissions, which allows local users to decrypt network traffic by reading the WEP key from the registry key.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Intel PRO Wireless 2011B LAN USB Device Driver 1.5.16.0 Intel Intel PRO Wireless 2011B LAN USB Device Driver 1.5.18.0	2

References

http://online.securityfocus.com/archive/1/252607
http://www.iss.net/security_center/static/8015.php
http://www.securityfocus.com/bid/3968