Vulnerabilities > CVE-2006-0226 - Remote Buffer Overflow vulnerability in Freebsd 6.0

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
freebsd
critical
NVD
Published: 2006-01-19
Updated: 2017-07-20

Summary

Integer overflow in IEEE 802.11 network subsystem (ieee80211_ioctl.c) in FreeBSD before 6.0-STABLE, while scanning for wireless networks, allows remote attackers to execute arbitrary code by broadcasting crafted (1) beacon or (2) probe response frames.

Vulnerable Configurations

Part Description Count
OS
Freebsd
2

Seebug

bulletinFamilyexploit
descriptionBUGTRAQ ID: 16296 CVE(CAN) ID: CVE-2006-0226 FreeBSD的IEEE 802.11网络子系统可为无线联网实现协议协商。 FreeBSD的IEEE 802.11在处理协议协商时存在漏洞,远程攻击者可能利用此漏洞在主机上执行任意指令。 在扫描已有的无线网络时,如果处理了被破坏的IEEE 802.11信标或探测响应帧的话就会出现整数溢出,导致帧溢出缓冲区。能够广播特制信标或探测响应帧的攻击者可以在任何扫描无线网络的系统上以FreeBSD Kernel权限执行任意代码。 FreeBSD FreeBSD 6.0-STABLE FreeBSD FreeBSD 6.0-RELEASE FreeBSD ------- FreeBSD已经为此发布了一个安全公告(FreeBSD-SA-06:05)以及相应补丁: FreeBSD-SA-06:05:IEEE 802.11 buffer overflow 链接:<a href=ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:05.80211.asc target=_blank>ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:05.80211.asc</a> 补丁下载: * FreeBSD 80211.patch <a href=ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-06:05/80211.patch target=_blank>ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-06:05/80211.patch</a>
idSSV:4223
last seen2017-11-19
modified2006-08-17
published2006-08-17
reporterRoot
titleFreeBSD IEEE 802.11网络子系统远程溢出漏洞

References