Vulnerabilities > CVE-2009-0052 - Remote Denial of Service vulnerability in NETGEAR WNDAP330 Management Frame

CVSS 5.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

low complexity

netgear

atheros

NVD

Published: 2009-11-12

Updated: 2018-10-11

Summary

The Atheros wireless driver, as used in Netgear WNDAP330 Wi-Fi access point with firmware 2.1.11 and other versions before 3.0.3 on the Atheros AR9160-BC1A chipset, and other products, allows remote authenticated users to cause a denial of service (device reboot or hang) and possibly execute arbitrary code via a truncated reserved management frame.

Vulnerable Configurations

Part	Description	Count
Application	Netgear Netgear Wndap330 Firmware 2.1.11	1
Hardware	Atheros Atheros Ar9160 Bc1A Chipset *	1
Hardware	Netgear Netgear Wndap330 *	1

References

http://secunia.com/advisories/37344
http://www.osvdb.org/59880
http://www.securityfocus.com/archive/1/507777/100/0/threaded
http://www.securityfocus.com/bid/36991
http://www.vupen.com/english/advisories/2009/3212
https://exchange.xforce.ibmcloud.com/vulnerabilities/54216