1.5.2

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

intel

CWE-189

NVD

Published: 2013-08-25

Updated: 2013-08-26

Summary

Multiple integer overflows in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400 devices allow remote attackers to cause a denial of service (component crash) or possibly execute arbitrary code via an L5 connection with a crafted PDU value that triggers a heap-based buffer overflow within (1) L5SocketsDispatcher.c or (2) L5Connector.c.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Wimax Network Service 1.5.0 Intel Wimax Network Service 1.5.2	2

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://www.openwall.com/lists/oss-security/2013/08/08/17
https://bugzilla.redhat.com/show_bug.cgi?id=911129