Vulnerabilities > CVE-2005-2626 - Remote vulnerability in Kismet

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
kismet
critical
nessus

Summary

Unspecified vulnerability in Kismet before 2005-08-R1 allows remote attackers to have an unknown impact via unprintable characters in the SSID.

Nessus

  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DSA-788.NASL
    descriptionSeveral security related problems have been discovered in kismet, a wireless 802.11b monitoring tool. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-2626 Insecure handling of unprintable characters in the SSID. - CAN-2005-2627 Multiple integer underflows could allow remote attackers to execute arbitrary code. The old stable distribution (woody) does not seem to be affected by these problems.
    last seen2020-06-01
    modified2020-06-02
    plugin id19531
    published2005-08-30
    reporterThis script is Copyright (C) 2005-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/19531
    titleDebian DSA-788-1 : kismet - several vulnerabilities
  • NASL familyGentoo Local Security Checks
    NASL idGENTOO_GLSA-200508-10.NASL
    descriptionThe remote host is affected by the vulnerability described in GLSA-200508-10 (Kismet: Multiple vulnerabilities) Kismet is vulnerable to a heap overflow when handling pcap captures and to an integer underflow in the CDP protocol dissector. Impact : With a specially crafted packet an attacker could cause Kismet to execute arbitrary code with the rights of the user running the program. Workaround : There is no known workaround at this time.
    last seen2020-06-01
    modified2020-06-02
    plugin id19472
    published2005-08-19
    reporterThis script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/19472
    titleGLSA-200508-10 : Kismet: Multiple vulnerabilities