Multiple Intel Centrino / PROSet / Apple Airport wireless drivers security vulnerabilities updated since 10.08.2006
Published:		22.09.2006
Source:		INTEL
SecurityVulns ID:		6475
Type:		remote
Level:		9/10
Description:		Multiple vulnerabilities, including local privilege escalation anre remote code execution.

Affected:		APPLE : MacOS X 10.3
		APPLE : Mac OS X 10.4
		INTEL : Intel PRO/Wireless 2200BG
		INTEL : Intel PRO/Wireless 2915ABG
		INTEL : Intel PRO/Wireless 2100
		INTEL : Intel PRO/Wireless 3945ABG
CVE:		CVE-2007-0686 (The Intel 2200BG 802.11 Wireless Mini-PCI driver 9.0.3.9 (w29n51.sys) allows remote attackers to cause a denial of service (system crash) via crafted disassociation packets, which triggers memory corruption of "internal kernel structures," a different vulnerability than CVE-2006-6651. NOTE: this issue might overlap CVE-2006-3992.)
		CVE-2006-3992 (Unspecified vulnerability in the Centrino (1) w22n50.sys, (2) w22n51.sys, (3) w29n50.sys, and (4) w29n51.sys Microsoft Windows drivers for Intel 2200BG and 2915ABG PRO/Wireless Network Connection before 10.5 with driver 9.0.4.16 allows remote attackers to execute arbitrary code via certain frames that trigger memory corruption.)

Original document		APPLE, About the security content of AirPort Update 2006-001 and Security Update 2006-005 (22.09.2006)
		INTEL, Intel® Centrino Wireless Driver Malformed Frame Privilege Escalation (10.08.2006)
		INTEL, Intel® PROSet/Wireless Software Local Information Disclosure (10.08.2006)
		INTEL, Intel® Centrino Wireless Driver Malformed Frame Remote Code Execution (10.08.2006)

Files:		Exploits Intel 2200BG 802.11 disassociation packet Kernel Memory Corruption
Discuss:		Read or add your comments to this news (0 comments)