Heap-based Buffer Overflow in Aruba Mobility Controllers and Alcatel-Lucent OmniAccess
CVE-2007-0931

Currently unrated

Key Information:

Vendor: Aruba
Status: Mobility Controller; Omniaccess Wireless
Vendor: CVE Published:; 14 February 2007

What is CVE-2007-0931?

This vulnerability involves a heap-based buffer overflow in the management interfaces of several models of Aruba Mobility Controllers and Alcatel-Lucent OmniAccess Wireless devices. An attacker could exploit this flaw by sending long credential strings, potentially leading to a denial of service by crashing the process. In some scenarios, it might allow for the execution of arbitrary code, posing significant security risks to affected systems.

References

http://www.securityfocus.com/archive/1/459928/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.kb.cert.org/vuls/id/319913

third-party-advisoryx_refsource_CERT-VN

http://secunia.com/advisories/24144

third-party-advisoryx_refsource_SECUNIA

EPSS Score

6% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2007
Vulnerability Reserved
Feb 13, 2007

CVE-2007-0931 Data

JSON